View Single Post
  #1 (permalink)  
Old 9th December 2010
Niiub Niiub is offline
Junior Member
BS.Player Newbie
 
Join Date: Dec 2010
Age: 44
Posts: 3
Rep Power: 0
Niiub is on a distinguished road
Default Security issue BS.Player Free?

Hej Guys i wrote some days a email to the support but got no response.
I made a security audit of the BS.Player Free, and found a possebility to take controll of the Process if someone start a manipullated XYZ file with the Player.
Let's look at some Screenshot: [removed]

you see the loaded BS.Player in a debugger and you see the overwritten XYZXYZ it means we can take controlle of the Process and let execute some evil code.

I don't know if the Pro version is alsow affected, but i think so. It have to be fixed bevor some people try to use this bug and attack the customers. If the developers are interested in the manipullated file and more Information please Contact me.

Thanks,
Niiub

Edit//

Thanks BSPeter hope they can fix the security issues. :) For Help contact me by email or PM :)

Last edited by Niiub; 9th December 2010 at 11:56 PM.
Reply With Quote
 

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20