Clementine Music Player through 1.3.1 is vulnerable to a User Mode Write Access Violation, affecting the MP3 file parsing functionality at clementine+0x3aa207. The vulnerability is triggered when the user opens a crafted MP3 file or loads a remote stream URL that is mishandled by Clementine. Attackers could exploit this issue to cause a crash (DoS) of the clementine.exe process or achieve arbitrary code execution in the context of the current logged-in Windows user.
Weakness
The product dereferences a pointer that it expects to be valid but is NULL.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Clementine | Clementine-player | * | 1.3.1 (including) |
| Clementine | Ubuntu | bionic | * |
| Clementine | Ubuntu | focal | * |
| Clementine | Ubuntu | hirsute | * |
| Clementine | Ubuntu | impish | * |
| Clementine | Ubuntu | kinetic | * |
| Clementine | Ubuntu | lunar | * |
| Clementine | Ubuntu | mantic | * |
| Clementine | Ubuntu | oracular | * |
| Clementine | Ubuntu | plucky | * |
| Clementine | Ubuntu | trusty | * |
| Clementine | Ubuntu | xenial | * |