Playlist.Buffer.Overflow
Description
This indicates an exploit attempt against a Buffer Overflow vulnerability in various media player.
The vulnerability allows remote attackers to execute arbitrary code via a "m3u" or "pls" file containing an overly long line. A remote attacker may be able to exploit this to execute arbitrary code within the context of the application, via a crafted file.
Affected Products
Nullsoft Winamp 5.094 and 5.12
Apple iTunes 4.7
Apple iTunes before 9.0.1
KUDRSOFT AudioPLUS 2.0.0.215
Sony SonicStage CONNECT Player (CP) 4.3
AtomixMP3 2.3
COWON America jetAudio Basic 7.0.3
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2023-04-03 | 23.527 | Sig Added |
2021-09-01 | 18.150 | Sig Added |
2020-12-21 | 16.983 | Sig Added |
2020-10-22 | 16.948 | Modified |
2020-10-20 | 16.946 | Sig Added |