Infesting you with Virus News
 

News

Contributed by: Lauren Gerber
Date: July 2, 2009
Lauren Gerber
2
Vote
0

Don't Play With The AudioPLUS Playlist Vulnerability
 

Let me introduce you to a vulnerability that should not be played with in any way, shape or form. It is causing chaos for many people and could get to you to, if you are not careful. This is no matter to be taken lightly and everyone who makes use of this product needs to be aware of the potential dangers involved. This vulnerability relates to AudioPLUS and was provided and brought to our attention by none other than hack4love.AudioPLUS.jpg

For those of you who may not know what AudioPLUS is, I am here to help you out in this regard. AudioPLUS is a fantastic and extremely user friendly MP3 player. Its supports a variety of audio formats with the inclusion of MP3, .MP2, .WAV, .L3, .L2 as well as.ATX. It has its very own unique equalizer, which helps its users get the perfect frequency of sound required for their individual needs. The AudioPLUS MP3 player is geared for a variety of operating systems, with the inclusion of Windows XP. Some of the files of Windows XP may include but are not limited to the following:_inst16.exe, a3d.dll, b1cbase.sys, c_g18030.dll as well as cabinet.pdb.dll.

The big question that you may all be pondering over, is what has caused this vulnerability in AudioPLUS? This vulnerability occurs due to a boundary error that takes place during the processing of the playlist files. If this vulnerability is exploited with accuracy and precision, then the risks are high that it may lead to a stack based buffer overflow. This may occur via a ".m3u" or ".lst" file, which has an overly long entry.music.jpg

The risk of arbitrary code being executed is also extremely high. If arbitrary code is executed, then the malicious attacker will be able to completely take over a targeted machine, resulting in unauthorized access to confidential information.

This vulnerability has been rated as highly critical. It has been fully confirmed in version 2.0.0.215. I would like to bring to the attention of all users, that it is highly possible that other versions may also be affected. The solution to this vulnerability is for users not to open any untrusted playlists under any circumstances. I wish you all a safe and secure AudioPLUS experience.

Resources:
The original advisory.
The AudioPLUS MP3 Player.
Some product vulnerabilities.
The virus research and resolution center.

User Comments

Name:
Email:
Website:
Comment:
Please type 5-digit security code below:
Captcha image for spam protection

Featured Videos

Registry Tutorials
From: PC1News Videos
Added: June 13, 2009
more videos

Software Downloads

SpyHunter V.3
Free Spyhunter Scanner (Spyware/Trojan Detection). DETECT Spyware, Trojans, Worms, Viruses and malware on your PC absolutely FREE.
Download now
Registry Mechanic 8
Award Winning software, Fixes registry and improves computer performance. Created by a division of Symantec, this tool will scan your registry and find errors that can be later cleaned either individually or all together.
Download now
SpywareBlaster 4.1
The tool is used to prevent the installation of spyware and other potentially unwanted software. As soon as you download it, you will be able to protect your system.
Download now

Latest Comments

FakeAlert-SpyPr .. rt-SpyPro.gen.
March 13, 2010
how can i remove this more..
High Risk Cloaked Malware
March 13, 2010
F-secure found "suspiciou .. e!/gemini"on my system, but it does not clean it. Please tell... more..
How Are Trojan.Win32.Ag .. in32.Agent.azsyand Personal Antivirus Related?
March 13, 2010
removed it with a help of your atticle and http://removeit .. /removeit.info/ more..
more comments..
rss
Home | Files | Programs | Latest Comments | About us | Privacy Policy | Contributors | Contact Us
© 2008 - 2010 pc1news.com - All rights reserved.
Home  Tips  Downloads Videos Virus List Vulnerabilities
Home > Computer Security > Don't Play With The AudioPLUS Playlist Vulnerability