This module exploits a vulnerability in the mps.dll control included in the BaoFeng Storm media player. The exploit is triggered when the OnBeforeVideoDownload() method processes a long string argument resulting in a stack-based buffer overflow. This module runs a malicious web site on the Core Impact Console and waits for an unsuspecting user to trigger the exploit by connecting to the web site.
CVE Link
Exploit Platform
Exploit Type
Product Name