CVE-2009-3811

Description

Stack-based buffer overflow in Music Tag Editor 1.61 build 212 allows remote attackers to execute arbitrary code via an MP3 file with a long ID3 tag. NOTE: some of these details are obtained from third party information.

Affected products

• assistanttools / music_tag_editor1.61 – 1.61

References

• MISChttp://liquidworm.blogspot.com/2009/07/music-tag-editor-161-build-212-remote.html
• VENDOR_ADVISORYhttp://secunia.com/advisories/35828
• MISChttp://osvdb.org/55861
• MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/51724
• EXPLOIThttp://www.exploit-db.com/exploits/9167