Bugtraq mailing list archives

Previous By Date Next
Previous By Thread Next

BPM STUDIO PRO 4.2 DOS DEVICE PATH VULNERABILITY

From: "][-][UNTER" <lopht () tutopia com>
Date: Wed, 27 Feb 2002 07:00:39 -0300
Hi Bugtraq !!


BPM STUDIO PRO 4.2 is one of the most famous mp3 mixer and player and it has
an http server implementation for manage the player via the web browser.

Unfortunatly, when you perform a simple http request like:
http://BPM-HOST/con/con
you can crash instantly non-patched Win9x host with a simple Blue Screen !!

HTTP daemon is not activated by default

bye bye

-----------------------------------------------
               ][-][UNTER
Infobyte Security Research Crew
       Buenos Aires, Argentina
-----------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: