Euphonics Audio Player Buffer Overflow Vulnerability Network Vulnerability

Summary

This host is running Euphonics Audio Player and is prone to Buffer Overflow Vulnerability.

Impact

Successful exploitation will let the attacker execute arbitrary codes in the context of the application through crafted playlist files 'file.pls' with overly long data which may lead to crashing of the application. Impact level: Application/System

Solution

Upgrade to the latest version http://sourceforge.net/projects/euphonics

Insight

The vulnerability exists in AdjMmsEng.dll file of multiple MultiMedia Soft audio components for .NET. This flaw arises due to failure in performing adequate boundary checks on user supplied input to the application buffer.

Affected

Euphonics Audio Player with AdjMmsEng.dll file version 7.11.2.7 and prior.

References

http://secunia.com/Advisories/33817
http://secunia.com/advisories/33791
http://www.vupen.com/english/advisories/2009/0316

Updated on 2017-03-28

Severity

Classification

CVE CVE-2009-0476
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Adobe Shockwave Player ActiveX Control BOF Vulnerability
ActiveFax RAW Server Multiple Buffer Overflow Vulnerabilities
DesignWorks Professional '.cct' File BOF Vulnerability
Adobe Reader Integer Overflow Vulnerability - Jan 12 (Linux)
BSPlayer Stack Overflow Vulnerability BLS

Take action and discover your vulnerabilities