Summary
This host is installed with ALLPlayer
and is prone to buffer overflow vulnerability.
Impact
Successful exploitation will allow attackers
to cause a buffer overflow, resulting in a denial of service or potentially allowing the execution of arbitrary code.
Impact Level: System/Application
Solution
No solution or patch is available as of
30th January, 2015. Information regarding this issue will be updated once the solution details are available. For updates refer to http://www.allplayer.org
Insight
Flaw is due to improper handling of M3U file.
Affected
ALLPlayer version 5.6.2 through 5.8.1
on Windows
Detection
Get the installed version with the help of
detect NVT and check the version is vulnerable or not.
References
- http://osvdb.org/98283
- http://packetstormsecurity.com/files/123554
- http://packetstormsecurity.com/files/123986
- http://packetstormsecurity.com/files/124161
- http://packetstormsecurity.com/files/125519
- http://www.exploit-db.com/exploits/28855
- http://www.exploit-db.com/exploits/29549
- http://www.exploit-db.com/exploits/29798
- http://www.exploit-db.com/exploits/32041
- http://www.exploit-db.com/exploits/32074
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-2013-7409 -
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities