YouTube Downloader Buffer Overflow Vulnerability Allowing Arbitrary Code Execution

A buffer overflow vulnerability has been identified in YouTube Video Grabber version 1.9.9.1, now known as YouTube Downloader. This vulnerability allows attackers to execute arbitrary code by overwriting the Structured Exception Handler (SEH). Exploitation involves crafting a malicious payload of 712 bytes that manipulates the SEH to trigger a bind shell connection on a specified local port.

Impact

Exploitation of this vulnerability allows for arbitrary code execution on the affected system.

Reproduction

To reproduce this vulnerability, first create a payload using a Python script that exploits the buffer overflow by overwriting the SEH with a jump instruction and a return address that points to a location in the YouTube Downloader executable. The payload should include a bind shell payload generated with msfvenom, encoded to avoid null bytes and line breaks. Save this payload to a text file. Then, open YouTube Downloader and paste the contents of the text file into the 'Name and Serial Number' field. After clicking 'OK', a bind shell will be established on the specified port.