Test ID:	1.3.6.1.4.1.25623.1.0.900459
Category:	Buffer overflow
Title:	Euphonics Audio Player Buffer Overflow Vulnerability
Summary:	Euphonics Audio Player is prone to a buffer overflow vulnerability.
Description:	Summary: Euphonics Audio Player is prone to a buffer overflow vulnerability. Vulnerability Insight: The vulnerability exists in AdjMmsEng.dll file of multiple MultiMedia Soft audio components for .NET. This flaw arises due to failure in performing adequate boundary checks on user supplied input to the application buffer. Vulnerability Impact: Successful exploitation will let the attacker execute arbitrary codes in the context of the application through crafted playlist files 'file.pls' with overly long data which may lead to crashing of the application. Affected Software/OS: Euphonics Audio Player with AdjMmsEng.dll file version 7.11.2.7 and prior. Solution: Upgrade to the latest version. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2009-0476 BugTraq ID: 33589 http://www.securityfocus.com/bid/33589 Bugtraq: 20090203 Euphonics Audio Player v1.0 (.pls) Local BOF POC (Google Search) http://www.securityfocus.com/archive/1/500652/100/0/threaded https://www.exploit-db.com/exploits/7958 https://www.exploit-db.com/exploits/7973 https://www.exploit-db.com/exploits/7974 http://secunia.com/advisories/33791 http://secunia.com/advisories/33817 http://www.vupen.com/english/advisories/2009/0316
Copyright	Copyright (C) 2009 Greenbone AG

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.