Prodigy

**Name of the Vulnerable Software and Affected Versions** E-Soft DJ Studio Pro versions 4.2 through 4.2.2.7.5 E-Soft DJ Studio Pro versions 5.x through 5.1.4.3.1 **Description** The issue allows user-assisted remote attackers to cause a denial of service and possibly execute arbitrary code via a playlist file containing a long string. **Recommendations** For E-Soft DJ Studio Pro versions 4.2 through 4.2.2.7.5, avoid using playlist files that contain long strings until a fix is available. For E-Soft DJ Studio Pro versions 5.x through 5.1.4.3.1, restrict the use of playlist files to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** JetAudio version 7.5.3 **Description** The issue allows remote attackers to cause a denial of service, resulting in memory consumption and application crash, by providing a long string at the end of a .wav file. **Recommendations** For JetAudio version 7.5.3, consider avoiding the use of .wav files with long strings at the end until a patch is available. As a temporary workaround, restrict the handling of .wav files to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Softonic International SciTE version 1.72 **Description** The issue is caused by a buffer overflow that allows user-assisted remote attackers to cause a denial of service, resulting in an application crash. This occurs when a Ruby (.rb) file containing a long string is used, and the crash is triggered when a scroll bar is utilized. **Recommendations** For Softonic International SciTE version 1.72, consider avoiding the use of Ruby (.rb) files with long strings until a fix is available. As a temporary workaround, refrain from using the scroll bar when working with such files to minimize the risk of application crash.

**Name of the Vulnerable Software and Affected Versions** MixSense DJ Studio version 1.0.0.1 **Description** The issue allows remote attackers to cause a denial of service, resulting in an application crash, and possibly execute arbitrary code. This can be achieved by using a long string in an .mp3 playlist file. **Recommendations** For MixSense DJ Studio version 1.0.0.1, consider avoiding the use of long strings in .mp3 playlist files until a patch is available. As a temporary workaround, restrict the handling of .mp3 playlist files to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Acoustica MP3 Audio Mixer versions 1.0 through 2.471 **Description** The issue allows remote attackers to cause a denial of service, resulting in a crash, by providing a long string in a .sgp playlist file. **Recommendations** For versions 1.0 through 2.471, consider avoiding the use of .sgp playlist files with long strings until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.