Sony CONNECT SonicStage Player M3U Playlist Processing Buffer Overflow Vulnerability

Sony CONNECT SonicStage player is prone to a buffer-overflow vulnerability because it fails to properly bounds-check user-supplied input before copying it to an insufficiently sized memory buffer.

Remote attackers may crash the application or execute arbitrary machine code in the context of the user running the affected application.

This issue affects SonicStage 4.3; other versions may also be vulnerable.


Privacy Statement
Copyright 2010, SecurityFocus