Actively Exploited in the Wild
This vulnerability is being actively exploited in the wild.
WM Downloader Buffer Overflow Vulnerability Allowing Arbitrary Code Execution
Vulnerability
A stack-based buffer overflow vulnerability has been identified in WM Downloader version 3.1.2.2. This vulnerability arises from the application's failure to properly validate the length of input when processing specially crafted .m3u playlist files. As a result, an attacker can overwrite structured exception handler (SEH) records, leading to the execution of arbitrary code. Exploitation occurs locally, with the malicious file executed under the current user's privileges.
Impact
Successful exploitation of this vulnerability allows for arbitrary code execution with the privileges of the user running WM Downloader.
Reproduction
To reproduce this vulnerability, create a .m3u file that is crafted to exploit the buffer overflow. The file should be designed to overwrite the structured exception handler (SEH) records. Once the malicious .m3u file is created, open it with WM Downloader version 3.1.2.2. The application will process the file, leading to the buffer overflow and execution of the embedded payload.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.