Skip to main content

Nero Media Player M3U File Processing Buffer Overflow Vulnerability

Last Update Date: 28 Jan 2011 Release Date: 6 Feb 2008 2710 Views

RISK: Medium Risk

A vulnerability has been identified in Nero Media Player, which could be exploited by attackers to cause a denial of service or take complete control of an affected system. This issue is caused by a buffer overflow error when processing a M3U file containing overly long data, which could be exploited by attackers to crash an affected application or execute arbitrary code by tricking a user into opening a malicious M3U file.


Impact

  • Remote Code Execution

System / Technologies affected

  • Nero Media Player 1.x

Solutions

  • There is no patch available for this vulnerability currently.
  • Workaround: Do not open untrusted .M3U files.


Vulnerability Identifier

  • No CVE information is available

Source


Related Link