1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. HTTP Nokia Multimedia Player BO

HTTP Nokia Multimedia Player BO

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects attempts to exploit a buffer overflow vulnerability in Nokia Multimedia Player.

Additional Information

Nokia Multimedia Player is a media player for Microsoft Windows.

The application is prone to a heap-based buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied input. This issue occurs when the application fails to handle malformed '.npl' files.

Successfully exploiting this issue may allow remote attackers to execute arbitrary code in the context of the application. Failed exploit attempts will cause denial-of-service conditions.

Nokia Multimedia Player 1.0 is vulnerable; other versions may also be affected.

Affected

  • Nokia Multimedia Player

Response

Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: vuldb@securityfocus.com.

Additional References

  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube