Mario Kartone Ciccarelli

**Name of the Vulnerable Software and Affected Versions** ALLMediaServer versions 0.95 and earlier **Description** A buffer overflow issue exists in the MediaServer.exe file of the ALLMediaServer DLNA server, which could allow remote attackers to execute arbitrary code or cause a denial of service on the victim machine by sending a specially crafted long string to TCP port 888. **Recommendations** For versions 0.95 and earlier, consider restricting access to TCP port 888 until a patch is available. As a temporary workaround, avoid using the MediaServer.exe file until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.