1. Symantec-Broadcom-Horizontal/
  2. Security Response/
  3. Attack Signatures/
  4. Attack: Destiny Media Player CVE-2009-3429

Attack: Destiny Media Player CVE-2009-3429

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects attempts to exploit a stack-based buffer overflow vulnerability in Destiny Media Player which could result in remote code execution.

Additional Information

Destiny Media Player is a multimedia player.

The application is prone to a remote stack-based buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied input. Specifically, this issue occurs when opening specially crafted '.pls' files.

Successfully exploiting this issue may allow remote attackers to execute arbitrary code in the context of the application. Failed exploit attempts may result in a denial-of-service condition.

Affected

  • Destiny Media Player 1.61 is vulnerable; other versions may also be affected.
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube