Sony CONNECT SonicStage Player M3U Playlist Processing Buffer Overflow Vulnerability
BID:26241
Info
Sony CONNECT SonicStage Player M3U Playlist Processing Buffer Overflow Vulnerability
| Bugtraq ID: | 26241 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2007-5709 |
| Remote: | Yes |
| Local: | No |
| Published: | Oct 29 2007 12:00AM |
| Updated: | Nov 04 2008 07:15PM |
| Credit: | Parvez Anwar is credited with discovering this vulnerability. |
| Vulnerable: |
Sony CONNECT SonicStage Player 4.3 |
| Not Vulnerable: | |
Discussion
Sony CONNECT SonicStage Player M3U Playlist Processing Buffer Overflow Vulnerability
Sony CONNECT SonicStage player is prone to a buffer-overflow vulnerability because it fails to properly bounds-check user-supplied input before copying it to an insufficiently sized memory buffer.
Remote attackers may crash the application or execute arbitrary machine code in the context of the user running the affected application.
This issue affects SonicStage 4.3; other versions may also be vulnerable.
Sony CONNECT SonicStage player is prone to a buffer-overflow vulnerability because it fails to properly bounds-check user-supplied input before copying it to an insufficiently sized memory buffer.
Remote attackers may crash the application or execute arbitrary machine code in the context of the user running the affected application.
This issue affects SonicStage 4.3; other versions may also be vulnerable.
Exploit / POC
Sony CONNECT SonicStage Player M3U Playlist Processing Buffer Overflow Vulnerability
An attacker can exploit this issue by enticing an unsuspecting victim to load a malicious 'M3U' playlist file.
The following exploit code is available:
An attacker can exploit this issue by enticing an unsuspecting victim to load a malicious 'M3U' playlist file.
The following exploit code is available:
Solution / Fix
Sony CONNECT SonicStage Player M3U Playlist Processing Buffer Overflow Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
References
Sony CONNECT SonicStage Player M3U Playlist Processing Buffer Overflow Vulnerability
References:
References:
- Sony CONNECT SonicStage Homepage (Sony)
- Vendor Homepage (Sony)