[VIM] SA35195 / OSVDB 54734
Carsten H. Eiram
che at secunia.com
Thu Aug 6 07:18:49 UTC 2009
Steve, this one doesn't seem to have a CVE identifier assigned.
When verifying it, one of my guys determined that the core problem is a
stack-based buffer overflow, not a heap-based as the reporter states.
Furthermore, the general nature of the vulnerable function means that
not only MP3 files are a valid vector; titles obtained from other
metadata storage formats may be vectors as well (e.g. FLAC has been
confirmed).
--
Med venlig hilsen / Kind regards
Carsten H. Eiram
Chief Security Specialist
Secunia
Weidekampsgade 14 A
DK-2300 Copenhagen S
Denmark
Phone +45 7020 5144
Fax +45 7020 5145
More information about the VIM
mailing list