Vulnerabilities > Cowon America
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2010-03-05 | CVE-2009-4676 | Buffer Errors vulnerability in Cowon America Jetaudio 7.5.2/7.5.3.15 Stack-based buffer overflow in JetCast.exe 2.0.4.1109 in jetAudio 7.5.2 and 7.5.3.15 allows remote attackers to execute arbitrary code via a long title in a FLAC file. | 9.3 |
2010-03-05 | CVE-2009-4668 | Buffer Errors vulnerability in Cowon America Jetaudio 7.5.2/7.5.3.15 Stack-based buffer overflow in JetCast.exe 2.0.4.1109 in jetAudio 7.5.2 and 7.5.3.15 allows remote attackers to execute arbitrary code via a long ID3 tag in an MP3 file. | 9.3 |
2008-02-13 | CVE-2008-0747 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Cowon America Jetaudio Basic Stack-based buffer overflow in COWON America jetAudio 7.0.5 and earlier allows user-assisted remote attackers to execute arbitrary code via a long URL in a .asx file, a different vulnerability than CVE-2007-5487. | 9.3 |
2007-10-16 | CVE-2007-5487 | Buffer Errors vulnerability in Cowon America Jetaudio 7.0.3Basic Stack-based buffer overflow in COWON America jetAudio Basic 7.0.3 allows user-assisted remote attackers to execute arbitrary code via a long URL in an EXTM3U section of a .m3u file. | 9.3 |
2007-09-19 | CVE-2007-4983 | Path Traversal vulnerability in Cowon America Jetaudio 7.0.3.3016/7.0.3Basic Directory traversal vulnerability in the JetAudio.Interface.1 ActiveX control in JetFlExt.dll in jetAudio 7.0.3 Basic and 7.0.3.3016 allows remote attackers to create or overwrite arbitrary local files via a ..\ (dot dot backslash) in the second argument to the DownloadFromMusicStore method. | 10.0 |
2007-09-17 | CVE-2007-4911 | Improper Input Validation vulnerability in Cowon America Jetcast Server 2 JSMP3OGGWt.dll in JetCast Server 2.0.0.4308 allows remote attackers to cause a denial of service (daemon crash) via a long .mp3 URI to TCP port 8000. | 5.0 |
2006-07-05 | CVE-2006-2910 | Remote Buffer Overflow vulnerability in Cowon America Jetaudio Basic6.2.6.8330 Buffer overflow in jetAudio 6.2.6.8330 (Basic), and possibly other versions, allows user-assisted attackers to execute arbitrary code via an audio file (such as WMA) with long ID Tag values including (1) Title, (2) Author, and (3) Album, which triggers the overflow in the tooltip display string if the sound card driver is disabled or incorrectly installed. | 5.1 |