CVE-2009-2650

Name of the Vulnerable Software and Affected Versions Sorcerer Software MultiMedia Jukebox version 4.0 Build 020124

Description A heap-based buffer overflow issue allows remote attackers to cause a denial of service, potentially leading to an application crash, or possibly execute arbitrary code. This can be achieved via a crafted file, specifically a .m3u file or possibly a .pst file.

Recommendations For Sorcerer Software MultiMedia Jukebox version 4.0 Build 020124, consider avoiding the use of .m3u and .pst files until a patch is available. As a temporary workaround, restrict access to files that could potentially trigger this issue to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.