Buffer overflow in (1) MusicConverter.exe, (2) playlist.exe, and (3) amp.exe in dBpowerAMP Audio Player 2.0 and dbPowerAmp Music Converter 10.0 allows remote attackers to cause a denial of service or execute arbitrary code via a .pls or .m3u playlist that contains long File1 (filename) fields.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Dbpoweramp_audio_player | Illustrate | 2.0 (including) | 2.0 (including) |
| Dbpoweramp_music_converter | Illustrate | 10.0 (including) | 10.0 (including) |
References
- http://marc.info/?l=bugtraq\u0026m=109668542406346\u0026w=2
- http://secunia.com/advisories/12684/
- http://www.gulftech.org/?node=research\u0026article_id=00052-09272004
- http://www.securityfocus.com/bid/11266
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17535
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17539
- http://marc.info/?l=bugtraq\u0026m=109668542406346\u0026w=2
- http://secunia.com/advisories/12684/
- http://www.gulftech.org/?node=research\u0026article_id=00052-09272004
- http://www.securityfocus.com/bid/11266
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17535
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17539