Buffer overflow : Elecard AVC HD Player Buffer Overflow Vulnerability

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.900627

Categoría: Buffer overflow

Título: Elecard AVC HD Player Buffer Overflow Vulnerability

Resumen: Elecard AVC HD Player is prone to a buffer overflow vulnerability.

Descripción: Summary:
Elecard AVC HD Player is prone to a buffer overflow vulnerability.

Vulnerability Insight:
Application fails to perform adequate boundary checks on user-supplied input
which results in a buffer overflow while processing playlist(.xpl) containing long MP3 filenames.

Vulnerability Impact:
Successful exploitation will allow attacker to execute arbitrary code
in the context of the affected application.

Affected Software/OS:
Elecard AVC HD Player 5.5.90213 and prior on Windows.

Solution:
Upgrade to Elecard AVC HD Player version 5.6.90515 or later.

CVSS Score:
9.3

CVSS Vector:
AV:N/AC:M/Au:N/C:C/I:C/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2009-1356
BugTraq ID: 34560
http://www.securityfocus.com/bid/34560
https://www.exploit-db.com/exploits/8452

Copyright Copyright (C) 2009 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.900627
Categoría:	Buffer overflow
Título:	Elecard AVC HD Player Buffer Overflow Vulnerability
Resumen:	Elecard AVC HD Player is prone to a buffer overflow vulnerability.
Descripción:	Summary: Elecard AVC HD Player is prone to a buffer overflow vulnerability. Vulnerability Insight: Application fails to perform adequate boundary checks on user-supplied input which results in a buffer overflow while processing playlist(.xpl) containing long MP3 filenames. Vulnerability Impact: Successful exploitation will allow attacker to execute arbitrary code in the context of the affected application. Affected Software/OS: Elecard AVC HD Player 5.5.90213 and prior on Windows. Solution: Upgrade to Elecard AVC HD Player version 5.6.90515 or later. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2009-1356 BugTraq ID: 34560 http://www.securityfocus.com/bid/34560 https://www.exploit-db.com/exploits/8452
Copyright	Copyright (C) 2009 Greenbone AG