Sony's SonicStage CP contains playlist security hole
We've never had much love for Sony's SonicStage software, and now it looks like there's yet another reason to avoid it: according to Secunia, there's a buffer overflow vulnerability in the latest edition, version 4.3, that allows arbitrary code to be injected and run. The bug is triggered by .m3u playlists that contain over 1000 characters and there are already sample exploits floating around, so those of you still rocking the ATRAC action may want to avoid downloaded playlists until things get patched up.[Via Heise Security]
Filed under: Portable Audio
Reader Comments (Page 1 of 1)
Hastings @ Oct 31st 2007 12:06PM
One more reason to avoid SonicStage...!
Jon @ Oct 31st 2007 12:11PM
You don't need to use SonicStage for newer Sony DAPs. Just drag and drop.
Regarding ATRAC, I like the format and it gave good quality despite high compression on those MiniDiscs. Too bad it was too restrictive.
Concura @ Oct 31st 2007 12:26PM
i didn't know they came out with an new update. i guess now isn't a good time
jmattick @ Oct 31st 2007 12:38PM
Don't worry about that hole...
It's where the root kit is going to go in the next update of SonicStage... ;)
silverblackvoid @ Oct 31st 2007 1:38PM
plz sony, no more of that crappy software again.
Danny @ Oct 31st 2007 5:33PM
They still make that? I thought it was the bastard-child of iTunes 4 and Windows 95.
NEX @ Oct 31st 2007 7:32PM
in b4 V&
William McGough @ Nov 1st 2007 2:28PM
I actually like sonic stage, especially over iTunes.
It is nicely organized, you can sort it any way you want, and unlike iTunes you can see the tracks just one one album at a time, instead of the perpetual list.
I do like cover flow in itunes, but iTunes is really slow on my PC compared with sonic stage.
Sonic stage has better sound quality, especially with its Digital Sound Enhancement Engine, which rebuilds the detail of MP3 tracks that has been lost in compression. I don't know how they do it, but it does sound amazing, especially with music that has lots of high notes.
Of course I will admit sonic stage's biggest flaw: its crappy music store. But for people who buy and rip lots of CDs, sonic stage is a great way to organize them - much better for large collections than iTunes.
Tahiri @ Nov 1st 2007 4:49PM
Correction, you guys hate everything Sony. Even the good stuff