środa, 15 sierpnia 2018

Crashing KMPlayer

As far as I know KMPlayer just released a new version, so below you will find few bugs for the 'old one' ;) Let's go...

Version I tried (on Windows XP SP 3 and Windows 7 - both 32bit) was:

 

You can grab it here.

(TL;DR - few bugs found between 25.07-15.08.2018)


There was some about ~80 crashes (for Win7 as well as for XP) but below you will find only few of them:

Checking KMPlayer - details for Windows 7 (32bit):

 Case #01 - Exploitability Classification: EXPLOITABLE:

---<windbg>---
 CommandLine: C:\KMPlayer\kmplayer.exe C:\sf_9a64a71c509a82e044e985e0af91c1f2-784.mp4
(...)
Executable search path is:
ModLoad: 00400000 011cc000   KMPlayer.exe
(...)
(854.95c): Access violation - code c0000005 (first chance)
First chance exceptions are reported before any exception handling.
This exception may be expected and handled.
eax=037a4d20 ebx=00000000 ecx=0f9640c0 edx=03835978 esi=0391a0c8 edi=0391a0d8
eip=6d93f23b esp=0012df9c ebp=0012dfa4 iopl=0         nv up ei pl nz na po nc
cs=001b  ss=0023  ds=0023  es=0023  fs=003b  gs=0000             efl=00210202
quartz!AMGetErrorTextA+0x5f941:
6d93f23b ff5108          call    dword ptr [ecx+8]    ds:0023:0f9640c8=????????

0:000> r;!exploitable -v;q
eax=037a4d20 ebx=00000000 ecx=0f9640c0 edx=03835978 esi=0391a0c8 edi=0391a0d8
eip=6d93f23b esp=0012df9c ebp=0012dfa4 iopl=0         nv up ei pl nz na po nc
cs=001b  ss=0023  ds=0023  es=0023  fs=003b  gs=0000             efl=00210202
quartz!AMGetErrorTextA+0x5f941:
6d93f23b ff5108          call    dword ptr [ecx+8]    ds:0023:0f9640c8=????????
---</windbg>---


Case #02 - Exploitability Classification: EXPLOITABLE:

---<windbg>---
eax=fffffff0 ebx=00689a14 ecx=00000001 edx=00aece20 esi=0339d200 edi=00689a14
eip=0040d735 esp=0012cce0 ebp=0012cd10 iopl=0         nv up ei pl nz na po cy
cs=001b  ss=0023  ds=0023  es=0023  fs=003b  gs=0000             efl=00010203
KMPlayer+0xd735:
0040d735 8b00            mov     eax,dword ptr [eax]  ds:0023:fffffff0=????????
---</windbg>--- 


Case #03 - Exploitability Classification: EXPLOITABLE:

---<windbg>--- 
eax=036b4d20 ebx=00000000 ecx=673e4801 edx=01320174 esi=0382c8d8 edi=0382c8e8
eip=fb0c05ff esp=0012df98 ebp=0012dfa4 iopl=0         nv up ei pl nz na po nc
cs=001b  ss=0023  ds=0023  es=0023  fs=003b  gs=0000             efl=00210202
fb0c05ff ??              ???
---</windbg>--- 


If I will have a time to check all of them I'll probably drop a post here or update this one ;)

Remember to update your KMPlayer to the latest available version. ;)

Cheers,
Cody



Posted by at
Labels: , , , ,

Brak komentarzy:

Prześlij komentarz

Subskrybuj: Komentarze do posta (Atom)