CVE-2009-0136

Name of the Vulnerable Software and Affected Versions Amarok versions 1.4.10 through 2.0.1

Description The issue concerns multiple array index errors in the Audible::Tag::readTag function, which can be exploited by remote attackers using a crafted Audible Audio (.aa) file. This can lead to a denial of service (application crash) or the execution of arbitrary code. The exploitation is possible through the nlen or vlen Tag value, resulting in an invalid pointer dereference or the writing of a 0x00 byte to an arbitrary memory location after an allocation failure.

Recommendations For Amarok versions 1.4.10 through 2.0.1, consider disabling the Audible::Tag::readTag function or restricting the use of Audible Audio (.aa) files until a patch is available. Avoid using the nlen or vlen Tag values in the affected function to minimize the risk of exploitation.