CCMPlayer.M3U.File.Handling.Overflow

Release Date Jan 07, 2012
Severity high
Impact System Compromise: Remote attackers can remotely execute arbitrary code within the context of the application.
Description This indicates an attack attempt against a Buffer Overflow vulnerability in CCMPlayer. The vulnerability is caused by an error when the vulnerable software handles a malicious m3u file. It allows a remote attacker to execute arbitrary code via sending a crafted m3u file.
Affected Products CCMPlayer 1.5
Recommended Actions Currently we are not aware of any vendor supplied patch for this issue.
Coverage IPS VCM
Reference/s http://osvdb.org/show/osvdb/77453 http://www.exploit-db.com/exploits/18178/

Fortinet