CVE-2009-3170

Name of the Vulnerable Software and Affected Versions AIMP2 Audio Converter versions 2.53 (build 330) and earlier

Description The issue is a stack-based buffer overflow that can be triggered by a long File1 argument in a .pls or .m3u playlist file, potentially allowing remote attackers to cause a denial of service (crash) or possibly execute arbitrary code.

Recommendations For AIMP2 Audio Converter versions 2.53 (build 330) and earlier, consider updating to a newer version to mitigate the risk, however, at the moment, there is no information about a newer version that contains a fix for this issue. As a temporary workaround, consider restricting the use of .pls and .m3u playlist files to minimize the risk of exploitation.