[24442] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

BPM STUDIO PRO 4.2 DOS DEVICE PATH VULNERABILITY

daemon@ATHENA.MIT.EDU (][-][UNTER)
Wed Feb 27 18:51:11 2002

Message-ID: <007501c1bf75$9eeb8ac0$4500a8c0@pepe>
From: "][-][UNTER" <lopht@tutopia.com>
To: <bugtraq@securityfocus.com>
Date: Wed, 27 Feb 2002 07:00:39 -0300

Hi Bugtraq !!

BPM STUDIO PRO 4.2 is one of the most famous mp3 mixer and player and it has
an http server implementation for manage the player via the web browser.

Unfortunatly, when you perform a simple http request like:
http://BPM-HOST/con/con
you can crash instantly non-patched Win9x host with a simple Blue Screen !!

HTTP daemon is not activated by default

bye bye

-----------------------------------------------
               ][-][UNTER
Infobyte Security Research Crew
       Buenos Aires, Argentina
-----------------------------------------------


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[24442] in bugtraq

BPM STUDIO PRO 4.2 DOS DEVICE PATH VULNERABILITY

daemon@ATHENA.MIT.EDU (][-][UNTER)Wed Feb 27 18:51:11 2002

daemon@ATHENA.MIT.EDU (][-][UNTER)
Wed Feb 27 18:51:11 2002