Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Millenium MP3 Studio <= 2.0 .pls File Stack-Based Buffer Overflow
Vulnerability Description
Millenium MP3 Studio versions up to and including 2.0 is vulnerable to a stack-based buffer overflow when parsing .pls playlist files. The application fails to properly validate the length of the File1 field within the playlist, allowing an attacker to craft a malicious .pls file that overwrites the Structured Exception Handler (SEH) and executes arbitrary code. Exploitation requires the victim to open the file locally, though remote execution may be possible if the .pls extension is registered to the application and opened via a browser.
CVSS Information
N/A
Vulnerability Type
栈缓冲区溢出
Vulnerability Title
Millenium MP3 Studio 安全漏洞
Vulnerability Description
Millenium MP3 Studio是Millenium公司的一款音乐播放软件。 Millenium MP3 Studio 2.0及之前版本存在安全漏洞,该漏洞源于解析.pls文件时未验证File1字段长度,可能导致栈缓冲区溢出和执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A