Short Name |
HTTP:STC:DL:MAL-M3U |
---|---|
Severity |
Major |
Recommended |
No |
Category |
HTTP |
Keywords |
M3U Malformed File Format |
Release Date |
2011/11/16 |
Update Number |
2031 |
Supported Platforms |
idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
This signature detects attempts to exploit flaws in M3U files. M3U file type is primarily associated with 'MP3 Playlist File'. Standards are defined for representing a m3u file. Any deviation from it can be an indication of malicious activity. This kind of behavior is mostly noticeable from exploits created using Metasploit Framework.
Stack-based buffer overflow in Nullsoft Winamp 5.12 and 5.13 allows user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted .m3u file that causes an incorrect strncpy function call when the player pauses or stops the file.