Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | |||
Test ID: | 1.3.6.1.4.1.25623.1.0.900458 |
Category: | Buffer overflow |
Title: | MultiMedia Soft Audio Products Buffer Overflow Vulnerability |
Summary: | This host is running MultiMedia Soft Audio Products and is prone; to Buffer Overflow Vulnerability. |
Description: | Summary: This host is running MultiMedia Soft Audio Products and is prone to Buffer Overflow Vulnerability. Vulnerability Insight: The vulnerability exists in AdjMmsEng.dll file of multiple MultiMedia Soft audio components for .NET. This issue arises due to failure in performing adequate boundary checks on user supplied input to the application buffer. Vulnerability Impact: Successful exploitation will let the attacker execute arbitrary codes in the context of the application through crafted playlist files 'file.pls' with overly long data which may lead to crashing of the application. Affected Software/OS: The following components with AdjMmsEng.dll file version 7.11.2.7 and prior. MultiMedia Soft Audio DJ Studio for .NET MultiMedia Soft Audio Sound Recorder for .NET MultiMedia Soft Audio Sound Editor for .NET Solution: Upgrade to the latest versions. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C |
Cross-Ref: |
BugTraq ID: 33589 Common Vulnerability Exposure (CVE) ID: CVE-2009-0476 http://www.securityfocus.com/bid/33589 Bugtraq: 20090203 Euphonics Audio Player v1.0 (.pls) Local BOF POC (Google Search) http://www.securityfocus.com/archive/1/500652/100/0/threaded https://www.exploit-db.com/exploits/7958 https://www.exploit-db.com/exploits/7973 https://www.exploit-db.com/exploits/7974 http://secunia.com/advisories/33791 http://secunia.com/advisories/33817 http://www.vupen.com/english/advisories/2009/0316 |
Copyright | Copyright (C) 2009 Greenbone Networks GmbH |
This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |