Signature Detail
Short Name |
HTTP:MISC:DB-POMER-AMP-BO |
|---|---|
Severity |
Medium |
Recommended |
No |
Category |
HTTP |
Keywords |
dBpowerAMP Audio Player Buffer Overflow |
Release Date |
2012/12/12 |
Update Number |
2210 |
Supported Platforms |
idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
HTTP: dBpowerAMP Audio Player Buffer Overflow
This signature detects attempts to exploit a known vulnerability in the dBpowerAMP Audio Player. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the affected application.
Extended Description
dBpowerAMP Music Converter and Audio Player reported prone to remote buffer overflow vulnerabilities when processing malformed audio and playlist files. This issues exists due to insufficient boundary checks performed by the applications and may allow an attacker to gain unauthorized access to a vulnerable computer.
Affected Products
- Illustrate dBpowerAMP Audio Player 2.0.0
- Illustrate dbPowerAmp Music Converter 10.0.0
- Illustrate dbPowerAmp Music Converter 10.1.0
- Illustrate dbPowerAmp Music Converter 11.0.0
- Illustrate dbPowerAmp Music Converter 11.1.0
- Illustrate dbPowerAmp Music Converter 11.5.0
References
- BugTraq: 11266
- CVE: CVE-2004-1569