CVE-2009-4668

Name of the Vulnerable Software and Affected Versions jetAudio versions 7.5.2 through 7.5.3.15 JetCast.exe version 2.0.4.1109

Description The issue is related to a stack-based buffer overflow in JetCast.exe, which can be triggered by a long ID3 tag in an MP3 file, potentially allowing remote attackers to execute arbitrary code.

Recommendations For jetAudio versions 7.5.2 through 7.5.3.15, consider updating JetCast.exe to a version that is not affected by this issue. For JetCast.exe version 2.0.4.1109, avoid using it to play MP3 files with long ID3 tags until a patch is available. As a temporary workaround, consider restricting access to JetCast.exe or disabling its ability to process MP3 files with long ID3 tags.