Lucene search
MitreCVE-2010-2009HistoryMay 21, 2010 - 5:30 p.m.
CVE-2010-2009
2010-05-2117:30:01
CWE-119
mitre
web.nvd.nist.gov
19
cve-2010-2009
bs.player
buffer overflow
remote code execution
media library
bs.global
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
8.3
Confidence
Low
EPSS
0.023
Percentile
89.9%
Stack-based buffer overflow in the media library in BS.Global BS.Player 2.51 build 1022, 2.41 build 1003, and possibly other versions allows user-assisted remote attackers to execute arbitrary code via a long ID3 tag in a .MP3 file. NOTE: some of these details are obtained from third party information.
Affected configurations
Node
bsplayerbs.playerMatch2.41
ORbsplayerbs.playerMatch2.51
Related
prion
prion
Stack overflow
2010-05-21 17:30:00
cvelist
cvelist
CVE-2010-2009
2010-05-21 17:00:00
nvd
nvd
CVE-2010-2009
2010-05-21 17:30:01
openvas
openvas
BS.Player '.bsl' File Buffer Overflow Vulnerabilities
2010-05-25 00:00:00
BS.Player '.bsl' File Buffer Overflow Vulnerabilities
2010-05-25 00:00:00
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
8.3
Confidence
Low
EPSS
0.023
Percentile
89.9%
Related for CVE-2010-2009