Summary
This host has COWON Media Center JetAudio installed and is prone to Buffer Overflow vulnerability.
Impact
Successful exploitation will allow remote attackers to execute arbitrary code and cause a stack-based buffer overflow by tricking the user into opening an MP3 or FLAC file containing an overly long title.
Impact Level: Application
Solution
No solution or patch was made available for at least one year since disclosure of this vulnerability. Likely none will be provided anymore.
General solution options are to upgrade to a newer release, disable respective features, remove the product or replace the product by another one.
Insight
The flaw is due to a boundary error in the jetCast component when processing song titles.
Affected
COWON Media Center JetAudio 7.5.2 through 7.5.3.15 on Windows
References
Severity
Classification
-
CVE CVE-2009-4668, CVE-2009-4676 -
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Apple QuickTime Multiple Buffer Overflow Vulnerabilities (Windows)
- Adobe Flash Player Buffer Overflow Vulnerability (Windows)
- Apple iTunes 'itms:' URI Stack Buffer Overflow Vulnerability
- CA eTrust PestPatrol Anti-Spyware 'ppctl.dll' ActiveX Control BOF Vulnerability
- CTorrent/Enhanced CTorrent Buffer Overflow Vulnerability