CVE-2008-4470

Name of the Vulnerable Software and Affected Versions: Numark CUE version 5.0 rev2

Description: The issue is a stack-based buffer overflow that can be triggered by a user-assisted attack, allowing attackers to cause a denial of service, which is an application crash, or potentially execute arbitrary code. This is achieved through an M3U playlist file containing a long absolute pathname.

Recommendations: For Numark CUE version 5.0 rev2, consider avoiding the use of M3U playlist files with long absolute pathnames until a fix is available. As a temporary workaround, restrict the handling of such files to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.