vendor:
ABBS Audio Media Player
by:
Julian Ahrens, modpr0be
7.5
CVSS
HIGH
Buffer Overflow
CWE
Product Name: ABBS Audio Media Player
Affected Version From: 3.1
Affected Version To: 3.1
Patch Exists: NO
Related CWE:
CPE:
Platforms Tested: Windows
2013
ABBS Audio Media Player .LST Buffer Overflow
This module exploits a buffer overflow in ABBS Audio Media Player. The vulnerability occurs when adding an .lst, allowing arbitrary code execution with the privileges of the user running the application. This module has been tested successfully on ABBS Audio Media Player 3.1 over Windows XP SP3 and Windows 7 SP1.
Mitigation:
Unknown