|Title:||SDP Downloader ASX File Heap Buffer Overflow Vulnerability|
|Summary:||Checks for the version of SDP Downloader|
Overview: This host is installed with SDP Downloader and is prone to Buffer
A boundary error exists while processing an HREF attribute of a REF element
in ASX files, due to which application fails to check user supplied input
before copying it into an insufficiently sized buffer.
Successful exploits will allow attackers to execute arbitrary code and can
cause application crash via a long .asf URL.
Impact Level: Application
SDP Downloader version 2.3.0 and prior
Fix: No solution or patch is available as of 19th May, 2009. Information
regarding this issue will be updated once the solution details are available.
For updates refer to http://sdp.ppona.com
BugTraq ID: 34712|
Common Vulnerability Exposure (CVE) ID: CVE-2009-1627
|Copyright||Copyright (C) 2009 SecPod|
|This is only one of 40037 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.