mplayer -- cddb stack overflow

ID 3AC80DD2-14DF-11DC-BCFC-0016179B2DD5
Type freebsd
Reporter FreeBSD
Modified 2007-06-06T00:00:00


Mplayer Team reports:

A stack overflow was found in the code used to handle cddb queries. When copying the album title and category, no checking was performed on the size of the strings before storing them in a fixed-size array. A malicious entry in the database could trigger a stack overflow in the program, leading to arbitrary code execution with the uid of the user running MPlayer.