Lucene search
HistoryMay 06, 2010 - 12:47 p.m.
CVE-2009-4841
cve-2009-4841
sonicmediaplayer
roxio cineplayer 3.2
buffer overflow
remote code execution
nvd
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
8.1 High
AI Score
Confidence
Low
0.944 High
EPSS
Percentile
99.2%
Heap-based buffer overflow in the SonicMediaPlayer ActiveX control in SonicMediaPlayer.dll in Roxio CinePlayer 3.2 allows remote attackers to execute arbitrary code via a long argument to the DiskType method. NOTE: this might overlap CVE-2007-1559.
Affected configurations
Node
roxiocineplayerMatch3.2
| CPE | Name | Operator | Version |
|---|---|---|---|
| roxio:cineplayer | roxio cineplayer | eq | 3.2 |
References
Related
cvelist
cvelist
CVE-2009-4841
2010-05-05 18:00:00
CVE-2007-1559
2007-04-11 22:00:00
prion
prion
Heap overflow
2010-05-06 12:47:00
Stack overflow
2007-04-11 22:19:00
nvd
nvd
CVE-2009-4841
2010-05-06 12:47:23
CVE-2007-1559
2007-04-11 22:19:00
packetstorm
packetstorm
Roxio CinePlayer ActiveX Control Buffer Overflow
2009-11-26 00:00:00
securityvulns
securityvulns
Roxio CinePlayer ActiveX buffer overflow
2007-04-19 00:00:00
cve
cve
CVE-2007-1559
2007-04-11 22:19:00
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
8.1 High
AI Score
Confidence
Low
0.944 High
EPSS
Percentile
99.2%
Related for CVE-2009-4841