CVE-2010-2004
CVE-2010-2004
Stack-based buffer overflow in BS.Global BS.Player 2.51 Build 1022 Free, and possibly other versions, allows user-assisted remote attackers to execute arbitrary code via the Skin parameter in the Options section of a skins file (.bsi), a different vulnerability than CVE-2009-1068.
Affected products
n/a · n/apublic PoCs found — 3
cve_referencewww.exploit-db.com/exploits/11154unverifiedexploitdbwww.exploit-db.com/exploits/11146unverifiedexploitdbwww.exploit-db.com/exploits/11154unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://secunia.com/advisories/38221https://exchange.xforce.ibmcloud.com/vulnerabilities/55708http://www.exploit-db.com/exploits/11154http://www.mertsarica.com/codes/bsplayer_seh_overwrite.pyhttp://www.mertsarica.com/?p=511http://www.securityfocus.com/bid/37831http://www.vupen.com/english/advisories/2010/0148