PT-2009-5723 · Destiney · Pirate Radio Destiny Media Player

The G0Bl!N

Published

2009-09-25

Updated

2017-09-19

CVE-2009-3429

CVSS v2.0

9.3

High

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Pirate Radio Destiny Media Player version 1.61

Description The issue is a stack-based buffer overflow that allows remote attackers to execute arbitrary code. This is achieved by providing a long string in a .pls playlist file.

Recommendations For Pirate Radio Destiny Media Player version 1.61, consider avoiding the use of .pls playlist files with long strings until a patch is available. As a temporary workaround, restrict the handling of .pls files to minimize the risk of exploitation.

Exploit

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

CVE-2009-3429

Affected Products

Pirate Radio Destiny Media Player

PT-2009-5723 · Destiney · Pirate Radio Destiny Media Player

CVE-2009-3429

Weakness Enumeration

Related Identifiers

Affected Products

References · 9