Atomix MP3 Malformed MP3 File Buffer Overflow Vulnerability
BID:23756
Info
Atomix MP3 Malformed MP3 File Buffer Overflow Vulnerability
| Bugtraq ID: | 23756 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2007-2487 |
| Remote: | Yes |
| Local: | No |
| Published: | May 02 2007 12:00AM |
| Updated: | May 07 2015 05:39PM |
| Credit: | PRETH00NKER is credited with the discovery of this vulnerability. |
| Vulnerable: |
Atomix Productions AtomixMP3 0 |
| Not Vulnerable: | |
Discussion
Atomix MP3 Malformed MP3 File Buffer Overflow Vulnerability
Atomix MP3 is prone to a buffer-overflow vulnerability because the application fails to bounds-check user-supplied data before copying it into an insufficiently sized buffer.
An attacker could exploit this issue by enticing a victim to load a malicious MP3 file. If successful, the attacker can execute arbitrary code in the context of the affected application.
Atomix MP3 is prone to a buffer-overflow vulnerability because the application fails to bounds-check user-supplied data before copying it into an insufficiently sized buffer.
An attacker could exploit this issue by enticing a victim to load a malicious MP3 file. If successful, the attacker can execute arbitrary code in the context of the affected application.
Exploit / POC
Atomix MP3 Malformed MP3 File Buffer Overflow Vulnerability
An attacker can exploit this issue by enticing an unsuspecting victim to open an MP3 file using the affected application.
The following exploit code is available:
An attacker can exploit this issue by enticing an unsuspecting victim to open an MP3 file using the affected application.
The following exploit code is available:
Solution / Fix
Atomix MP3 Malformed MP3 File Buffer Overflow Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
References
Atomix MP3 Malformed MP3 File Buffer Overflow Vulnerability
References:
References:
- Atomix MP3 Homepage (Atomix Production)
- Atomix Mp3 Buffer Overflow ([email protected])