Summary
This host has COWON Media Center JetAudio installed and is prone to Buffer Overflow vulnerability.
Impact
Successful exploitation will allow remote attackers to execute arbitrary code and cause a stack-based buffer overflow by tricking the user into opening an MP3 or FLAC file containing an overly long title.
Impact Level: Application
Solution
No solution or patch was made available for at least one year since disclosure of this vulnerability. Likely none will be provided anymore.
General solution options are to upgrade to a newer release, disable respective features, remove the product or replace the product by another one.
Insight
The flaw is due to a boundary error in the jetCast component when processing song titles.
Affected
COWON Media Center JetAudio 7.5.2 through 7.5.3.15 on Windows
References
Severity
Classification
-
CVE CVE-2009-4668, CVE-2009-4676 -
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Citrix Provisioning Services SoapServer Buffer Overflow Vulnerability
- BreakPoint Software, Hex Workshop Buffer Overflow vulnerability
- Asterisk HTTP Manager Buffer Overflow Vulnerability
- 3CTftpSvc TFTP Server Long Mode Buffer Overflow Vulnerability
- Alpine tmail and dmail Buffer Overflow Vulnerabilities (Win)