Sony's SonicStage CP allows code injection
According to a security advisory from Secunia, the security vulnerability was discovered by Parvez Anwar. If a .m3u playlist contains an entry with more than 1000 characters, a buffer overflow can occur. A sample program which is meant to demonstrate the vulnerability has now appeared on milw0rm.
The bug apparently affects the current version 4.3 of SonicStage CP and possibly previous versions. No update is yet available, so users of this software should not open .m3u playlists for the time being.
- Download the latest, still vulnerable version of SonicStage.
- Sample program demonstrating the vulnerability on milw0rm
- Sony CONNECT Player M3U Playlist Processing Buffer Overflow, security advisory from Secunia