Signature Detail
Short Name |
HTTP:STC:DL:MINI-STREAM-ASX-BOF |
|---|---|
Severity |
High |
Recommended |
No |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
Mini stream Products asx File Stack Buffer Overflow |
Release Date |
2012/10/17 |
Update Number |
2194 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
HTTP: Mini-stream Products ASX File Stack Buffer Overflow
This signature detects attempts to exploit a known vulnerability against Mini-stream Products. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the affected application.
Extended Description
Multiple Mini-stream Software products are prone to a remote stack-based buffer-overflow vulnerability because the applications fail to perform adequate boundary checks on user-supplied input. Attackers may leverage this issue to execute arbitrary code in the context of the application. Failed attacks will cause denial-of-service conditions. This issue affect the following products: RM-MP3 Converter 3.0.0.7 Ripper 3.0.1.1 ASX to MP3 Converter 3.0.0.7
Affected Products
- Mini-stream Software ASX to MP3 Converter 3.0.0 .7
- Mini-stream Software Mini-streamRipper 3.0.1 .1
- Mini-stream Software Mini-stream RM-MP3 Converter 3.0.0 .7
- Mini-stream Software Shadow Stream Recorder 3.0.1.7
References
- BugTraq: 34864
- URL: http://www.mini-stream.com/