MP3Info Unspecified Buffer Overflow Vulnerability

info
discussion
exploit
solution
references

MP3Info Unspecified Buffer Overflow Vulnerability

MP3Info is prone to a buffer-overflow vulnerability. The application fails to properly bounds-check user-supplied data before copying it into an insufficiently sized memory buffer.

This issue allows attackers to execute arbitrary machine code in the context of users running the affected application.

Version 0.8.4 of MP3Info is vulnerable to this issue; other versions may also be affected.