Lucene search

[email protected]CVE-2009-4756

HistoryMar 29, 2010 - 6:30 p.m.

CVE-2009-4756

2010-03-2918:30:00

CWE-119

[email protected]

web.nvd.nist.gov

cve

2009

4756

buffer overflow

traktorbeatport

beatport player

remote code execution

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

8.2 High

AI Score

Confidence

High

0.23 Low

EPSS

Percentile

96.6%

JSON

Stack-based buffer overflow in TraktorBeatport.exe 1.0.0.283 in Beatport Player 1.0.0.0 allows remote attackers to execute arbitrary code via a long string in a malformed playlist (.m3u) file.

Affected configurations

NVD

Node

beatportbeatport_playerMatch1.0.0.0

CPENameOperatorVersion
beatport:beatport_playerbeatport beatport playereq1.0.0.0

CPE	Name	Operator	Version
beatport:beatport_player	beatport beatport player	eq	1.0.0.0

References

www.exploit-db.com/exploits/8588

www.exploit-db.com/exploits/8590

www.exploit-db.com/exploits/8591

www.exploit-db.com/exploits/8592

www.securityfocus.com/bid/34793

exchange.xforce.ibmcloud.com/vulnerabilities/50267

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

8.2 High

AI Score

Confidence

High

0.23 Low

EPSS

Percentile

96.6%

JSON

Related for CVE-2009-4756

prion1 nvd1 openvas2 cvelist1