Lucene search
MitreCVE-2009-0350HistoryJan 29, 2009 - 7:30 p.m.
CVE-2009-0350
2009-01-2919:30:00
CWE-119
mitre
web.nvd.nist.gov
25
cve-2009-0350
merak media player
buffer overflow
remote code execution
.m3u playlist
security vulnerability
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
8.3
Confidence
High
EPSS
0.141
Percentile
95.8%
Stack-based buffer overflow in Merak Media Player 3.2 allows remote attackers to execute arbitrary code via a long string in a .m3u playlist file, related to the status bar icon’s tooltip. NOTE: some of these details are obtained from third party information.
Affected configurations
Node
merakmedia_playerMatch3.2
| Vendor | Product | Version | CPE |
|---|---|---|---|
| merak | media_player | 3.2 | cpe:2.3:a:merak:media_player:3.2:*:*:*:*:*:*:* |
Related
exploitdb
exploitdb
Merak Media Player 3.2 - '.m3u' File Local Buffer Overflow (PoC)
2009-01-25 00:00:00
Merak Media Player 3.2 - '.m3u' File Local Buffer Overflow (SEH)
2009-03-02 00:00:00
cvelist
cvelist
CVE-2009-0350
2009-01-29 19:00:00
seebug
seebug
Merak Media Player .m3u文件处理栈溢出漏洞
2009-02-13 00:00:00
nvd
nvd
CVE-2009-0350
2009-01-29 19:30:00
prion
prion
Stack overflow
2009-01-29 19:30:00
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
8.3
Confidence
High
EPSS
0.141
Percentile
95.8%
Related for CVE-2009-0350