RETIRED: Virtual DJ M3U File Buffer Overflow Vulnerability

Virtual DJ is prone to a buffer-overflow vulnerability because the application fails to properly bounds-check user-supplied data.

Attackers may attempt to exploit this issue by coercing users to access malicious M3U playlist files.

Successfully exploiting this issue allows remote attackers to execute arbitrary machine code in the context of the user running the affected application. This facilitates the remote compromise of affected computers.

Virtual DJ 5.0 is vulnerable; other versions may also be affected.

NOTE: This BID is being retired because it is a duplicate of BID 25512 (Virtual DJ '.m3u' File Remote Stack Buffer Overflow Vulnerability).


Privacy Statement
Copyright 2010, SecurityFocus