Intrusion PreventionWM.Downloader.Buffer.Overflow
Description
This indicates a possible attack against a stack-based buffer-overflow vulnerability in WM Downloader.
The vulnerability is due to the vulnerable software's inability to properly handle malformed user input. An attacker may exploit this to execute arbitrary code by sending a malicious .m3u file.
Affected Products
WM Downloader 3.1.2.2 is vulnerable. Other versions may also be affected.
Impact
System compromise
Recommended Actions
Currently we are unaware of any vendor-supplied patches or updates.
Coverage
| IPS (Regular DB) | |
| IPS (Extended DB) |
Version Updates
| Date | Version | Status | Detail |
|---|---|---|---|
| 2020-07-22 | 15.892 |
Modified
|
Sig Added |
| ID | 24038 |
| Created | Aug 24, 2010 |
| Updated | Nov 15, 2021 |
| Risk |
|
| Default Action | drop |
| Active | |
| Affected OS | Windows |
| Affected App | Other |
| Profile Type | Buffer Errors |