Buffer overflow

2006-07-0518:05:00

PRIOn knowledge base

www.prio-n.com

8.7 High

AI Score

Confidence

High

0.007 Low

EPSS

Percentile

80.4%

JSON

Buffer overflow in jetAudio 6.2.6.8330 (Basic), and possibly other versions, allows user-assisted attackers to execute arbitrary code via an audio file (such as WMA) with long ID Tag values including (1) Title, (2) Author, and (3) Album, which triggers the overflow in the tooltip display string if the sound card driver is disabled or incorrectly installed.

CPENameOperatorVersion
jetaudioeqbasic-6.2.6.8330

CPE	Name	Operator	Version
	jetaudio	eq	basic-6.2.6.8330

References

secunia.com/advisories/19456

secunia.com/secunia_research/2006-45/advisory/

www.securityfocus.com/bid/18825

www.vupen.com/english/advisories/2006/2667

exchange.xforce.ibmcloud.com/vulnerabilities/27593