PT-2010-1767 · Ksp · Ksp
Hack4Love
·
Published
2010-07-27
·
Updated
2017-09-19
·
CVE-2009-4964
CVSS v2.0
9.3
High
| Vector | AV:N/AC:M/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
KSP 2006 FINAL version
Description
The issue is a stack-based buffer overflow that allows remote attackers to execute arbitrary code. This is achieved by using a long string in a .M3U playlist file.
Recommendations
For KSP 2006 FINAL version , avoid using .M3U playlist files with long strings until a patch is available. As a temporary workaround, consider restricting the use of .M3U files to minimize the risk of exploitation.
Exploit
Fix
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ksp