Lucene search
MitreCVE-2009-4757HistoryMar 29, 2010 - 6:30 p.m.
CVE-2009-4757
2010-03-2918:30:00
CWE-119
mitre
web.nvd.nist.gov
19
cve-2009-4757
brothersoft ew-musicplayer
buffer overflow
denial of service
application crash
arbitrary code execution
m3u file
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
8.6
Confidence
High
EPSS
0.154
Percentile
95.9%
Stack-based buffer overflow in BrotherSoft EW-MusicPlayer 0.8 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long string in a malformed playlist (.m3u) file. NOTE: some of these details are obtained from third party information.
Affected configurations
Node
evils-worldew-musicplayerMatch0.8
| Vendor | Product | Version | CPE |
|---|---|---|---|
| evils-world | ew-musicplayer | 0.8 | cpe:2.3:a:evils-world:ew-musicplayer:0.8:*:*:*:*:*:*:* |
Related
prion
prion
Stack overflow
2010-03-29 18:30:00
nvd
nvd
CVE-2009-4757
2010-03-29 18:30:00
cvelist
cvelist
CVE-2009-4757
2010-03-29 18:00:00
exploitdb
exploitdb
EW-MusicPlayer 0.8 - '.m3u' Local Buffer Overflow (PoC)
2009-05-04 00:00:00
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
8.6
Confidence
High
EPSS
0.154
Percentile
95.9%
Related for CVE-2009-4757