Intrusion Prevention

Nokia.Multimedia.Player.NPL.File.Overflow

Description

This indicates an attack attempt to exploit a remote code-execution vulnerability
in Nokia Multimedia Player.
The vulnerability is caused by an error that occurs when the vulnerable software handles a malicious NPL file. A remote attacker may exploit this to execute arbitrary code via a crafted NPL file.

Affected Products

Nokia Multimedia Player version 1.00.55.5010

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Upgrade to the latest version, available from the vendor's web site:
http://nokia-multimedia-player.en.softonic.com/java

CVE References

CVE-2011-0498