Xion Audio Player '.aiff' File Remote Denial Of Service Vulnerability

Bugtraq ID:	52894
Class:	Boundary Condition Error
CVE:
Remote:	Yes
Local:	No
Published:	Apr 04 2012 12:00AM
Updated:	Apr 04 2012 12:00AM
Credit:	condis
Vulnerable:	Cliff Cawley Xion Audio Player 1.0.127
Not Vulnerable:

Xion Audio Player '.aiff' File Remote Denial Of Service Vulnerability

Xion Audio Player is prone to a remote denial-of-service vulnerability.

Attackers can exploit this issue to crash the affected application resulting in a denial-of-service condition. The vulnerability may also be exploited to execute arbitrary code but this has not been confirmed.

Xion Audio Player 1.0.127 is vulnerable; other versions may also be affected.

Xion Audio Player '.aiff' File Remote Denial Of Service Vulnerability

The following exploit is available:

• /data/vulnerabilities/exploits/52894.py

Xion Audio Player '.aiff' File Remote Denial Of Service Vulnerability

Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

Xion Audio Player '.aiff' File Remote Denial Of Service Vulnerability

References:

• Xion Audio Player Homepage (Cliff Cawley)