PT-2009-6035 · Mixsense · Mixsense Dj Studio

Prodigy

Publicado

2009-10-27

Atualizado

2017-09-19

CVE-2009-3808

CVSS v2.0

9.3

Alta

Vetor

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions MixSense DJ Studio version 1.0.0.1

Description The issue allows remote attackers to cause a denial of service, resulting in an application crash, and possibly execute arbitrary code. This can be achieved by using a long string in an .mp3 playlist file.

Recommendations For MixSense DJ Studio version 1.0.0.1, consider avoiding the use of long strings in .mp3 playlist files until a patch is available. As a temporary workaround, restrict the handling of .mp3 playlist files to minimize the risk of exploitation.

Exploit

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2009-3808

Produtos afetados

Mixsense Dj Studio

PT-2009-6035 · Mixsense · Mixsense Dj Studio

CVE-2009-3808

Identificadores relacionados

Produtos afetados

Referências · 4