Acoustica MP3 CD Burner PlayList Files Buffer Overflow Vulnerability
BID:24247
Info
Acoustica MP3 CD Burner PlayList Files Buffer Overflow Vulnerability
| Bugtraq ID: | 24247 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2007-3006 |
| Remote: | Yes |
| Local: | No |
| Published: | May 31 2007 12:00AM |
| Updated: | May 07 2015 05:37PM |
| Credit: | n00b is credited with the discovery of this vulnerability. |
| Vulnerable: |
Acoustica MP3 CD Burner 4.51 Acoustica MP3 CD Burner 4.32 |
| Not Vulnerable: | |
Discussion
Acoustica MP3 CD Burner PlayList Files Buffer Overflow Vulnerability
Acoustica MP3 CD Burner is prone to a a buffer-overflow vulnerability because the application fails to bounds-check user-supplied data before copying it into an insufficiently sized buffer.
Successfully exploiting this issue allows remote attackers to execute arbitrary machine code in the context of the affected user. Failed exploit attempts likely result in application crashes.
Acoustica MP3 CD Burner is prone to a a buffer-overflow vulnerability because the application fails to bounds-check user-supplied data before copying it into an insufficiently sized buffer.
Successfully exploiting this issue allows remote attackers to execute arbitrary machine code in the context of the affected user. Failed exploit attempts likely result in application crashes.
Exploit / POC
Acoustica MP3 CD Burner PlayList Files Buffer Overflow Vulnerability
Core Security Technologies has developed a working commercial exploit for its CORE IMPACT product. This exploit is not otherwise publicly available or known to be circulating in the wild.
The following exploit code is available:
Core Security Technologies has developed a working commercial exploit for its CORE IMPACT product. This exploit is not otherwise publicly available or known to be circulating in the wild.
The following exploit code is available:
Solution / Fix
Acoustica MP3 CD Burner PlayList Files Buffer Overflow Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
References
Acoustica MP3 CD Burner PlayList Files Buffer Overflow Vulnerability
References:
References:
- Vendor Homepage (Acoustica )