CVE-2007-6478

Published: 20/12/2007 Updated: 15/10/2018

CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6

VMScore: 685

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Stack-based buffer overflow in Rosoft Media Player 4.1.7, 4.1.8, and possibly earlier versions allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via a long string in a .M3U file. NOTE: some of these details are obtained from third party information.

Vulnerable Product	Search on Vulmon	Subscribe to Product
rosoftengineering rosoft media player
rosoftengineering rosoft media player 4.1.7

/* rosoft-player-explc: 2007-12-18: * * Copyright (c) 2007 devcode * * * ^^ D E V C O D E ^^ * * Rosoft Media Player <= 417 M3U Stack Overflow * [0-DAY] * * * Description: * A stack overflow occurs when parsing an m3u file * which does not contain any delimiters * * Hotfix/Patch: * None * * Vulnerable s ...

CWE-119 http://www.securityfocus.com/bid/26920 http://secunia.com/advisories/28144 http://www.osvdb.org/39501 http://securityreason.com/securityalert/3470 http://www.vupen.com/english/advisories/2007/4259 https://exchange.xforce.ibmcloud.com/vulnerabilities/39114 https://www.exploit-db.com/exploits/5122 http://www.securityfocus.com/archive/1/488131/100/200/threaded http://www.securityfocus.com/archive/1/485253/100/0/threaded https://nvd.nist.gov https://www.exploit-db.com/exploits/4749/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2007-6478

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect