CVE-2007-2487

Description

Stack-based buffer overflow in AtomixMP3 allows remote attackers to execute arbitrary code via a long filename in an MP3 file, a different vector than CVE-2006-6287.

Affected products

• atomix_productions / atomixmp3

References

• MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/34022
• MISChttp://securityreason.com/securityalert/2675
• MISChttp://www.securityfocus.com/archive/1/467374/100/0/threaded
• MISChttp://www.securityfocus.com/bid/23756
• MISChttp://osvdb.org/35532
• MISChttp://www.mexhackteam.org/prethoonker/descargas/Atomixb0f.zip
• VENDOR_ADVISORYhttp://secunia.com/advisories/25126