|Title:||TFM MMPlayer '.m3u' Buffer Overflow Vulnerability - July-09|
|Summary:||Check for the Version of TFM MMPlayer|
Overview: This host is installed with TFM MMPlayer and is prone to stack
based Buffer Overflow bulnerability.
This flaw is due to improper bounds checking when processing '.m3u' files
and can be exploited via crafted '.m3u' playlist file containing an overly
Successful exploitation allows the attacker to execute arbitrary code on
the system or cause the application to crash.
Impact Level: Application
TFM MMPlayer version 2.0 to 18.104.22.168 on Windows.
Fix: No solution or patch is available as of th 24th July, 2009. Information
regarding this issue will be updated once the solution details are available.
For updates refer to http://www.tfm.ro/mmplayer/top.html
Common Vulnerability Exposure (CVE) ID: CVE-2009-2566|
XForce ISS Database: mmplayer-m3u-bo(51442)
|Copyright||Copyright (C) 2009 SecPod|
|This is only one of 52540 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.