Lucene search

[email protected]CVE-2009-2384

HistoryJul 08, 2009 - 3:30 p.m.

CVE-2009-2384

2009-07-0815:30:01

CWE-119

[email protected]

web.nvd.nist.gov

cve-2009-2384

buffer overflow

brothersoft peamp

arbitrary code execution

.m3u playlist

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

8.1 High

AI Score

Confidence

High

0.04 Low

EPSS

Percentile

92.2%

JSON

Buffer overflow in amp.exe in Brothersoft PEamp 1.02b allows user-assisted remote attackers to execute arbitrary code via a long string in a .m3u playlist file. NOTE: some of these details are obtained from third party information.

Affected configurations

NVD

Node

mathipeampMatch1.02b

CPENameOperatorVersion
mathi:peampmathi peampeq1.02b

CPE	Name	Operator	Version
mathi:peamp	mathi peamp	eq	1.02b

References

secunia.com/advisories/35663

www.exploit-db.com/exploits/9061

exchange.xforce.ibmcloud.com/vulnerabilities/51479

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

8.1 High

AI Score

Confidence

High

0.04 Low

EPSS

Percentile

92.2%

JSON

Related for CVE-2009-2384

prion1 cvelist1 nvd1