Lucene search

[email protected]CVE-2009-0734

HistoryFeb 25, 2009 - 8:30 p.m.

CVE-2009-0734

2009-02-2520:30:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2009-0734

buffer overflow

multimediaplayer.exe

nokia pc suite

remote code execution

.m3u playlist file

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

8.3 High

AI Score

Confidence

High

0.177 Low

EPSS

Percentile

96.2%

JSON

Heap-based buffer overflow in MultimediaPlayer.exe 6.86.240.7 in Nokia PC Suite 6.86.9.3 allows remote attackers to execute arbitrary code via a long string in a .m3u playlist file.

Affected configurations

NVD

Node

nokianokia_pc_suiteMatch6.86.9.3

CPENameOperatorVersion
nokia:nokia_pc_suitenokia nokia pc suiteeq6.86.9.3

CPE	Name	Operator	Version
nokia:nokia_pc_suite	nokia nokia pc suite	eq	6.86.9.3

References

osvdb.org/51739

secunia.com/advisories/33796

www.securityfocus.com/archive/1/500627/100/0/threaded

www.vupen.com/english/advisories/2009/0318

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

8.3 High

AI Score

Confidence

High

0.177 Low

EPSS

Percentile

96.2%

JSON

Related for CVE-2009-0734

prion1 cvelist1 nvd1