Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-0476

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2009-0476
Last Modified 07 Mar 2011 10:18:33
Published 08 Feb 2009 04:30:09
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2009-0476

Summary

Stack-based buffer overflow in MultiMedia Soft AdjMmsEng.dll 7.11.1.0 and 7.11.2.7, as distributed in multiple MultiMedia Soft audio components for .NET, allows remote attackers to execute arbitrary code via a long string in a playlist (.pls) file, as originally reported for Euphonics Audio Player 1.0. NOTE: some of these details are obtained from third party information.

Vulnerable Systems

Application

  • Multimediasoft Audio Dj Studio For .net -

  • Multimediasoft Audio Sound Editer For .net -

  • Multimediasoft Audio Sound Recorder For .net -

  • Multimediasoft Audio Sound Studio For .net -

  • Multimediasoft Audio Sound Suite For .net -


References

VUPEN - ADV-2009-0316

BID - 33589

BUGTRAQ - 20090203 Euphonics Audio Player v1.0 (.pls) Local BOF POC

MILW0RM - 7974

MILW0RM - 7973

MILW0RM - 7958

SECUNIA - 33817

SECUNIA - 33791


Last Updated: 27 May 2016 10:50:16