Intrusion Prevention

BS.Player.BSL.Buffer.Overflow

Description

This indicates an attack attempt against a buffer-overflow vulnerability in BS Player.
The vulnerability is caused by an error when the vulnerable software handles a malicious .bsl playlist. It allows a remote attacker to execute arbitrary code via sending a crafted .bsl file.

Affected Products

BS.Player (bsplayer) 2.32 Build 975 Free and 2.34 Build 980 PRO and earlier

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Upgrade to the latest version 2.36 Build 990.

CVE References

CVE-2009-1068