BS.Player Buffer Overflow Vulnerability in Playlist Import Functionality

A buffer overflow vulnerability has been identified in BS.Player version 2.57 (build 1051) within the playlist import feature. The issue arises when the application processes .m3u files, as it does not properly validate the length of playlist entries. This oversight leads to a buffer overflow, allowing the manipulation of Structured Exception Handler (SEH) records. The vulnerability is triggered by opening a crafted playlist file, exploiting the Unicode parsing logic in the Windows client.

Impact

Exploitation of this vulnerability leads to a buffer overflow condition, allowing for arbitrary code execution by overwriting SEH records.

Reproduction

The vulnerability can be reproduced by importing a specially crafted .m3u playlist file into BS.Player version 2.57 (build 1051). The crafted file should contain long URLs that exceed the application's input validation, triggering the buffer overflow when the playlist is opened.