Peaches Posted February 5, 2009 Report Share Posted February 5, 2009 Nokia PC Suite Multimedia Player Playlist Processing Buffer Overflow Secunia Advisory: SA33796 Release Date: 2009-02-04 Critical: Highly critical Impact: System accessWhere: From remote Solution Status: Unpatched Software:Nokia PC Suite 6.xSubscribe: Instant alerts on relevant vulnerabilities Description:0in has discovered a vulnerability in Nokia PC Suite, which potentially can be exploited by malicious people to compromise a user's system.The vulnerability is caused due to a boundary error in the included Nokia Multimedia Player when processing playlist files. This can be exploited to cause a heap-based buffer overflow via e.g. an M3U file having an overly long entry.Successful exploitation may allow execution of arbitrary code.The vulnerability is confirmed in MultimediaPlayer.exe version 6.86.240.7 included in Nokia PC Suite version 6.86.9.3. Other versions may also be affected.Solution:Do not open untrusted files using Nokia Multimedia Player. Secunia Advisories - http://secunia.com/advisories/33796/ Quote Link to post Share on other sites
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.