Lucene search
MitreCVE-2007-5709HistoryOct 30, 2007 - 7:46 p.m.
CVE-2007-5709
2007-10-3019:46:00
CWE-119
mitre
web.nvd.nist.gov
28
4
cve-2007-5709
sony
sonicstage
connect player
buffer overflow
remote code execution
m3u file
security vulnerability
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
8
Confidence
High
EPSS
0.213
Percentile
96.5%
Stack-based buffer overflow in Sony SonicStage CONNECT Player (CP) 4.3 allows remote attackers to execute arbitrary code via a long file name in an M3U file.
Affected configurations
Node
sonysonicstage_connect_playerMatch4.3
| Vendor | Product | Version | CPE |
|---|---|---|---|
| sony | sonicstage_connect_player | 4.3 | cpe:2.3:a:sony:sonicstage_connect_player:4.3:*:*:*:*:*:*:* |
References
Social References
More
Related
prion
prion
Stack overflow
2007-10-30 19:46:00
exploitdb
exploitdb
Sony CONNECT Player 4.x - '.m3u' Local Stack Overflow
2007-10-29 00:00:00
cvelist
cvelist
CVE-2007-5709
2007-10-30 19:00:00
jvn
jvn
JVN#66291445 SonicStage CP buffer overflow vulnerability
2007-12-04 00:00:00
nvd
nvd
CVE-2007-5709
2007-10-30 19:46:00
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
8
Confidence
High
EPSS
0.213
Percentile
96.5%
Related for CVE-2007-5709