17 matches found
EUVD-2009-3153
Malware in sbrugna...
EUVD-2010-5319
Malware in sbrugna...
CVE-2010-20111
Digital Music Pad v8.2.3.3.4 contains a stack-based buffer overflow vulnerability in its playlist file parser. When opening a .pls file containing an excessively long string in the File1 field, the application fails to properly validate input length, resulting in corruption of the Structured...
CVE-2009-20002 Millenium MP3 Studio <= 2.0 .pls File Stack-Based Buffer Overflow
Millenium MP3 Studio versions up to and including 2.0 is vulnerable to a stack-based buffer overflow when parsing .pls playlist files. The application fails to properly validate the length of the File1 field within the playlist, allowing an attacker to craft a malicious .pls file that overwrites...
CVE-2009-20002
CVE-2009-20002 affects Millennium MP3 Studio versions up to 2.0. The vulnerability is a stack-based buffer overflow in the parsing of .pls playlist files, caused by inadequate validation of the File1 field length. An attacker can craft a malicious .pls file that overwrites the Structured Exceptio...
CVE-2010-20111
Digital Music Pad v8.2.3.3.4 contains a stack-based buffer overflow vulnerability in its playlist file parser. When opening a .pls file containing an excessively long string in the File1 field, the application fails to properly validate input length, resulting in corruption of the Structured...
CVE-2010-20111 Digital Music Pad <= 8.2.3.3.4 Stack Buffer Overflow
Digital Music Pad v8.2.3.3.4 contains a stack-based buffer overflow vulnerability in its playlist file parser. When opening a .pls file containing an excessively long string in the File1 field, the application fails to properly validate input length, resulting in corruption of the Structured...
CVE-2010-20111 Digital Music Pad <= 8.2.3.3.4 Stack Buffer Overflow
Digital Music Pad v8.2.3.3.4 contains a stack-based buffer overflow vulnerability in its playlist file parser. When opening a .pls file containing an excessively long string in the File1 field, the application fails to properly validate input length, resulting in corruption of the Structured...
PT-2025-34286 · Undefined · Undefined
Digital Music Pad v8.2.3.3.4 contains a stack-based buffer overflow vulnerability in its playlist file parser. When opening a .pls file containing an excessively long string in the File1 field, the application fails to properly validate input length, resulting in corruption of the Structured...
Millenium MP3 Studio 安全漏洞
Millenium MP3 Studio is a music playback software from Millenium. A security vulnerability exists in Millenium MP3 Studio 2.0 and prior versions, which originates from parsing a .pls file without validating the length of the File1 field, and could lead to a stack buffer overflow and execution of...
Digital Music Pad 安全漏洞
Digital Music Pad is a music creation and performance software from Digital Music Pad, Inc. A security vulnerability exists in Digital Music Pad version v8.2.3.3.4, which originates from parsing a .pls file without validating the length of the File1 field, which could lead to a stack buffer...
ASUSTOR ADM File Explorer Path Traversal Vulnerability
ASUSTOR ADM is a set of operating systems from ASUSTOR dedicated to ASUSTOR NAS storage devices.File Explorer is one of the file browsers. A directory traversal vulnerability exists in File Explorer in ASUSTOR ADM version 3.1.1. An attacker can exploit this vulnerability by modifying the 'file1'...
CVE-2018-12306
Directory Traversal in File Explorer in ASUSTOR ADM version 3.1.1 allows attackers to view arbitrary files by modifying the "file1" URL parameter, a similar issue to CVE-2018-11344...
CVE-2018-11344
A path traversal vulnerability in download.cgi in ASUSTOR AS6202T ADM 3.1.0.RFQ3 allows attackers to arbitrarily specify a file on the system to download via the file1 parameter...
ASUSTOR AS6202T ADM Path Traversal Vulnerability
ADM ASUSTOR Data Manager is the operating system and user interface for ASUSTOR NAS. A path traversal vulnerability exists in download.cgi in ASUSTOR AS6202T ADM 3.1.0.RFQ3. An attacker can exploit this vulnerability to arbitrarily specify a file on the system to download via the file1 parameter...
CVE-2009-3574
Tuniac 090517c allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a long File1 argument in a .pls playlist file, possibly a buffer overflow...
dBpowerAMP Audio Player 2 Buffer Overflow Exploit
dBpowerAMP Audio Player v2 .pls file LoCaL BufferOverFlow Exploit Exploited By AlpHaNiX From NullArea.Net Thanks Stack For The PoC system"cls" ; print "\n\n\n+ dBpowerAMP Audio Player v2 .pls file LoCaL BufferOverFlow Exploit" ; my $blah= "\x41" x 600; my $nop = "\x90" x 52 ; my $ret =...