Lucene search

[email protected]CVE-2009-4549

HistoryJan 04, 2010 - 5:30 p.m.

CVE-2009-4549

2010-01-0417:30:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2009-4549

buffer overflow

a2 media player pro

remote code execution

.m3u

.m3l playlist

security vulnerability

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

8.3 High

AI Score

Confidence

High

0.07 Low

EPSS

Percentile

94.0%

JSON

Stack-based buffer overflow in A2 Media Player Pro 2.51 allows remote attackers to execute arbitrary code via a long string in a (1) .m3u or (2) .m3l playlist file.

Affected configurations

NVD

Node

cdmia2_media_player_proMatch2.51

CPENameOperatorVersion
cdmi:a2_media_player_procdmi a2 media player proeq2.51

CPE	Name	Operator	Version
cdmi:a2_media_player_pro	cdmi a2 media player pro	eq	2.51

References

www.exploit-db.com/exploits/9377

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

8.3 High

AI Score

Confidence

High

0.07 Low

EPSS

Percentile

94.0%

JSON

Related for CVE-2009-4549

prion1 cvelist1 nvd1