0X58

Buffer overflow in AtomixMP3 2.3 allows user-assisted remote attackers to execute arbitrary code via long strings in file and title fields in a .pls file, as demonstrated by the (1) File1 and (2) Title1 fields, different vectors than CVE-2006-6287 and CVE-2007-2487.

Name of the Vulnerable Software and Affected Versions: Ots Labs OTSTurntables version 1.00 Description: The issue allows user-assisted remote attackers to execute arbitrary code via a long file path in an m3u file. This is due to a buffer overflow. Recommendations: For Ots Labs OTSTurntables version 1.00, at the moment, there is no information about a newer version that contains a fix for this issue.

Name of the Vulnerable Software and Affected Versions: Next Generation Software Virtual DJ (VDJ) version 5.0 Description: The issue allows user-assisted remote attackers to execute arbitrary code via a long file path in an m3u file. This is due to a buffer overflow. Recommendations: For Virtual DJ (VDJ) version 5.0, consider avoiding the use of long file paths in m3u files until a patch is available. As a temporary workaround, restrict the processing of m3u files with long paths to minimize the risk of exploitation.