proof of concept cdp <= 0.4 exploit

How to exploit it ?

* launch run. This generates epxlbuf and scbuf
* burn a cdrom with CD-Title explbuf
  and Artist name scbuf
* launch cdp with gnu debugger and the CD 
* If it segfaults, search for the shellcode
  string (Artist name at heap (x/1000s 0x80517f8 for example)
* edit RETADDR with new shellcode address in cdpexpl.c
* launch run and burn a CD with the new buffers.
* Social Engineering your evil and give him this CD.
* The evil must listen this cd with cdq.
* A buffer overflow occur and you can telnet to
  port 65535 to your friends IP.

* I never test it with real CD's.
* Is it possible to write over 200 chars as
  CD-Title ?

Please report me if this stuff works.
<priest@priestmaster.org>
