dBpowerAMP Audio Player / Music Converter Playlist Handling Buffer Overflow

Wednesday, September 29th, 2004
by Marc Erickson

“Critical: Highly critical Impact: System access Where: From remote Solution Status: Unpatched

James Bercegay has reported a vulnerability in dBpowerAMP Music Converter and Audio Player, which potentially can be exploited by malicious people to compromise a user’s system.

The vulnerability is caused due to a boundary error within the handling of filenames in playlists (”.pls” and “.m3u”) and Music Collection (”.mcc”) files. This can be exploited to cause a buffer overflow by e.g. tricking a user into opening a specially crafted playlist containing an overly long filename.

Successful exploitation may allow execution of arbitrary code.

The vulnerability has been reported in dBpowerAMP Music Converter 10.0 and Audio Player 2.0. Other versions may also be affected.

Solution: Use another product.”

What Do You Think?

Want to Start a Blog Here for Free?

Are you an expert in one subject or another? If your goal is to help others and dispense hard-earned information back to the community, stake a claim on your very own Lockergnome blog today! You can write about anything - no matter the topic. Sign-up to start blogging!

History - Jul 18, 2008

UCSB Researcher Leads Worldwide Study On Marine Fossil Diversity

Draft Security Pub Looks At Cell Phones, PDAs
Friday, July 18, 2008
Retina Transplants Show Promise In Patients With Retinal Degeneration
Friday, July 18, 2008
Biological Marker For Alzheimer’s Holds Promise For Earlier Diagnosis
Thursday, July 17, 2008
Lead Shot And Sinkers: Weighty Implications For Fish And Wildlife Health
Thursday, July 17, 2008
Sociological Analysis Shows Emergence Of Rights Revolution In China
Thursday, July 17, 2008

Technology - Jul 16, 2008

Software Helps Developers Get Started With PIV Cards

Purified Stem Cells Restore Muscle In Mice With Muscular Dystrophy
Wednesday, July 16, 2008
MIT Opens New Window On Solar Energy
Wednesday, July 16, 2008
Water: The Forgotten Crisis
Tuesday, July 15, 2008
Molecular Motor Works By Detecting Minute Changes In Force
Tuesday, July 15, 2008
Polished To Perfection
Tuesday, July 15, 2008

Events, Technology - Jul 10, 2008

Nanotechnology Oversight: An Agenda For The New Administration

Aerosol Toxins From Red Tides May Cause Long-Term Health Threat
Thursday, July 10, 2008
Special Horseshoes Measure Acceleration In Horses
Thursday, July 10, 2008
Gene Therapy Research In Developing World Raises Ethical Red Flags
Wednesday, July 9, 2008
A Green Solution To Biofuel Production
Wednesday, July 9, 2008
China’s Policies Treasure Both Environment And People
Wednesday, July 9, 2008

Health - Jul 8, 2008

Can Recycling Be Used To Treat Cancer?

Creating A New Approach To Archiving Human Genetic Information
Tuesday, July 8, 2008
Whales And Dolphins Influence New Wind Turbine Design
Tuesday, July 8, 2008
Baseball Diamonds: The Left-Hander’s Best Friend
Monday, July 7, 2008
Rubber ‘Snake’ Could Help Waves Get A Bite Of The Energy Market
Monday, July 7, 2008
The Body’s Own ‘Cannabis’ Is Good For The Skin
Monday, July 7, 2008

dBpowerAMP Audio Player / Music Converter Playlist Handling Buffer Overflow

Tags

Categories

What Do You Think?

Want to Start a Blog Here for Free?

History - Jul 18, 2008

UCSB Researcher Leads Worldwide Study On Marine Fossil Diversity

Technology - Jul 16, 2008

Software Helps Developers Get Started With PIV Cards

Events, Technology - Jul 10, 2008

Nanotechnology Oversight: An Agenda For The New Administration

Health - Jul 8, 2008

Can Recycling Be Used To Treat Cancer?

What else is new in Tech News Watch?

Biological Marker For Alzheimer’s Holds Promise For Earlier Diagnosis

Lead Shot And Sinkers: Weighty Implications For Fish And Wildlife Health

Sociological Analysis Shows Emergence Of Rights Revolution In China

Software Helps Developers Get Started With PIV Cards

Purified Stem Cells Restore Muscle In Mice With Muscular Dystrophy

Random Posts From the Archives

Gamer Sues Over Xbox Glitch

Fighting mandatory RFID in schools

IBM To Release G-Series Thinkpads

Office 2003 vs. OpenOffice.Org

The Real Story Behind SmartFilter Blocking BoingBoing

Further Reading

Tags

Categories

What Do You Think?

Want to Start a Blog Here for Free?

History - Jul 18, 2008

Technology - Jul 16, 2008

Events, Technology - Jul 10, 2008

Health - Jul 8, 2008

What else is new in Tech News Watch?

Random Posts From the Archives