Release DateMay 20, 2011 |
Severityhigh |
ImpactSystem compromise. |
DescriptionThis indicates an attack attempt against a buffer overflow vulnerability in MJM Core Player.The vulnerability is caused by an error when the vulnerable software handles a malicious .s3m file. It allows a remote attacker to execute arbitrary code via sending a crafted .s3m file. |
Affected ProductsMJM Core Player 2011 |
Recommended ActionsCurrently we are not aware of any vendor supplied patch for this issue.Do not open untrusted .s3m files. |
Coverage IPS
VCM |
Common Vulnerabilities and Exposures (CVE)CVE-2011-1574 |
Reference/shttp://osvdb.org/show/osvdb/72101http://www.securityfocus.com/bid/47248 (BugTraq) http://www.corelan.be/advisories.php?id=CORELAN-11-003 http://www.corelan.be/advisories.php?id=CORELAN-11-004 http://www.securityfocus.com/bid/47665 (BugTraq) |
