ALLPlayer ALLMediaServer up to 0.95 Service Port 888 MediaServer.exe Long String memory corruption

Summaryinfo

A vulnerability was found in ALLPlayer ALLMediaServer up to 0.95. It has been declared as critical. Impacted is an unknown function of the file MediaServer.exe of the component Service Port 888. The manipulation as part of Long String results in memory corruption. This vulnerability was named CVE-2017-17932. The attack may be performed from remote. In addition, an exploit is available. Applying restrictive firewalling is recommended.

Detailsinfo

A vulnerability was found in ALLPlayer ALLMediaServer up to 0.95. It has been classified as critical. Affected is some unknown processing of the file MediaServer.exe of the component Service Port 888. The manipulation as part of a Long String leads to a memory corruption vulnerability. CWE is classifying the issue as CWE-119. The product performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer. This is going to have an impact on confidentiality, integrity, and availability. CVE summarizes:

A buffer overflow vulnerability exists in MediaServer.exe in ALLPlayer ALLMediaServer 0.95 and earlier that could allow remote attackers to execute arbitrary code and/or cause denial of service on the victim machine/computer via a long string to TCP port 888.

The bug was discovered 12/27/2017. The weakness was presented 12/28/2017 (Website). The advisory is available at exploit-db.com. This vulnerability is traded as CVE-2017-17932 since 12/27/2017. The exploitability is told to be easy. It is possible to launch the attack remotely. The exploitation doesn't require any form of authentication. Technical details and a public exploit are known.

The exploit is shared for download at exploit-db.com. It is declared as highly functional. The vulnerability was handled as a non-public zero-day exploit for at least 1 days. During that time the estimated underground price was around $0-$5k.

It is possible to mitigate the weakness by firewalling tcp/888.

The vulnerability is also documented in the vulnerability database at Exploit-DB (43406). If you want to get best quality of vulnerability data, you may have to visit VulDB.

Productinfo

Vendor

• ALLPlayer

Name

• ALLMediaServer

Version

• 0.1
• 0.2
• 0.3
• 0.4
• 0.5
• 0.6
• 0.7
• 0.8
• 0.9
• 0.10
• 0.11
• 0.12
• 0.13
• 0.14
• 0.15
• 0.16
• 0.17
• 0.18
• 0.19
• 0.20
• 0.21
• 0.22
• 0.23
• 0.24
• 0.25
• 0.26
• 0.27
• 0.28
• 0.29
• 0.30
• 0.31
• 0.32
• 0.33
• 0.34
• 0.35
• 0.36
• 0.37
• 0.38
• 0.39
• 0.40
• 0.41
• 0.42
• 0.43
• 0.44
• 0.45
• 0.46
• 0.47
• 0.48
• 0.49
• 0.50
• 0.51
• 0.52
• 0.53
• 0.54
• 0.55
• 0.56
• 0.57
• 0.58
• 0.59
• 0.60
• 0.61
• 0.62
• 0.63
• 0.64
• 0.65
• 0.66
• 0.67
• 0.68
• 0.69
• 0.70
• 0.71
• 0.72
• 0.73
• 0.74
• 0.75
• 0.76
• 0.77
• 0.78
• 0.79
• 0.80
• 0.81
• 0.82
• 0.83
• 0.84
• 0.85
• 0.86
• 0.87
• 0.88
• 0.89
• 0.90
• 0.91
• 0.92
• 0.93
• 0.94
• 0.95

CPE 2.3info

• 🔍
• 🔍
• 🔍

CPE 2.2info

• 🔍
• 🔍
• 🔍

CVSSv4info

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Discussion