CVE-2009-3536

Name of the Vulnerable Software and Affected Versions EpicDJSoftware EpicVJ versions 1.2.8.0 through 1.3.1.2

Description The issue is related to multiple stack-based buffer overflows that can be triggered by remote attackers. This can be achieved by sending a long string in a .m3u or .mpl playlist file, potentially causing a denial of service (application crash) or possibly allowing the execution of arbitrary code.

Recommendations For EpicDJSoftware EpicVJ versions 1.2.8.0 through 1.3.1.2, consider restricting the use of .m3u and .mpl playlist files until a patch is available. As a temporary workaround, avoid using long strings in .m3u or .mpl playlist files to minimize the risk of exploitation.