Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2009-3995
HistoryDec 18, 2009 - 6:30 p.m.

CVE-2009-3995

2009-12-1818:30:00
CWE-119
[email protected]
web.nvd.nist.gov
43
cve-2009-3995
in_mod.dll
winamp
libmikmod
buffer overflow
remote code execution
impulse tracker

7.4 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.215 Low

EPSS

Percentile

96.4%

JSON

Multiple heap-based buffer overflows in IN_MOD.DLL (aka the Module Decoder Plug-in) in Winamp before 5.57, and libmikmod 3.1.12, might allow remote attackers to execute arbitrary code via (1) crafted samples or (2) crafted instrument definitions in an Impulse Tracker file. NOTE: some of these details are obtained from third party information.

Related

ubuntucve 4
securityvulns 6
veracode 1
cvelist 3
prion 3
debiancve 3
debian 2
nessus 17
fedora 2
openvas 23
cve 2
redhat 1
seebug 1
osv 1
centos 1
oraclelinux 1
altlinux 1
ubuntu 1
ubuntucve
ubuntucve
CVE-2009-3995
2009-12-18 00:00:00
CVE-2010-2546
2010-08-05 00:00:00
CVE-2009-3996
2009-12-18 00:00:00
securityvulns
securityvulns
Secunia Research: Winamp Impulse Tracker Sample Parsing Buffer Overflow
2009-12-17 00:00:00
Secunia Research: Winamp Impulse Tracker Instrument Parsing Buffer Overflows
2009-12-17 00:00:00
Secunia Research: libmikmod Module Parsing Vulnerabilities
2010-02-08 00:00:00
veracode
veracode
Buffer Overflow
2023-12-28 11:41:06
cvelist
cvelist
CVE-2009-3995
2009-12-18 18:00:00
CVE-2010-2546
2010-08-04 21:00:00
CVE-2010-2971
2010-08-04 21:00:00
prion
prion
Heap overflow
2009-12-18 18:30:00
Heap overflow
2010-08-05 13:22:00
Design/Logic Flaw
2010-08-05 13:22:00
debiancve
debiancve
CVE-2009-3995
2009-12-18 18:30:00
CVE-2010-2546
2010-08-05 13:22:00
CVE-2010-2971
2010-08-05 13:22:00
debian
debian
[SECURITY] [DSA 2081-1] New libmikmod packages fix arbitrary code execution
2010-08-01 19:11:22
[SECURITY] [DSA 2071-1] New libmikmod packages fix several vulnerabilities
2010-07-14 20:14:26
nessus
nessus
openSUSE Security Update : libmikmod (openSUSE-SU-2010:0209-1)
2010-05-05 00:00:00
SuSE 10 Security Update : libmikmod (ZYPP Patch Number 7004)
2010-10-11 00:00:00
Winamp < 5.57 Multiple Vulnerabilities
2009-12-17 00:00:00
fedora
fedora
[SECURITY] Fedora 13 Update: libmikmod-3.2.0-11.beta2.fc13
2010-09-09 01:12:11
[SECURITY] Fedora 14 Update: libmikmod-3.2.0-11.beta2.fc14
2010-09-08 04:36:46
openvas
openvas
Fedora Update for libmikmod FEDORA-2010-13673
2010-12-02 00:00:00
Fedora Update for libmikmod FEDORA-2010-13702
2010-09-10 00:00:00
Fedora Update for libmikmod FEDORA-2010-13673
2010-12-02 00:00:00
cve
cve
CVE-2010-2546
2010-08-05 13:22:00
CVE-2010-2971
2010-08-05 13:22:00
redhat
redhat
(RHSA-2010:0720) Moderate: mikmod security update
2010-09-28 00:00:00
seebug
seebug
Winamp模块解码器插件多个缓冲区溢出漏洞
2009-12-18 00:00:00
osv
osv
libmikmod - arbitrary code execution
2010-08-01 00:00:00
centos
centos
mikmod security update
2010-09-29 09:47:44
oraclelinux
oraclelinux
mikmod security update
2010-09-28 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 5 package libmikmod version 3.1.11-alt0.8
2010-08-26 00:00:00
ubuntu
ubuntu
libMikMod vulnerabilities
2010-09-29 00:00:00

7.4 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.215 Low

EPSS

Percentile

96.4%

JSON
Related for CVE-2009-3995
ubuntucve4securityvulns6veracode1cvelist3prion3debiancve3debian2nessus17fedora2openvas23cve2redhat1seebug1osv1centos1oraclelinux1altlinux1ubuntu1