Lucene search

[email protected]CVE-2009-4964

HistoryJul 28, 2010 - 2:43 p.m.

CVE-2009-4964

2010-07-2814:43:41

CWE-119

[email protected]

web.nvd.nist.gov

cve-2009-4964

ksp 2006 final

stack-based buffer overflow

remote code execution

.m3u playlist file

8.3 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.101 Low

EPSS

Percentile

94.9%

JSON

Stack-based buffer overflow in KSP 2006 FINAL allows remote attackers to execute arbitrary code via a long string in a .M3U playlist file.

Affected configurations

NVD

Node

ksplayerksp_sound_playerMatch2006final

CPENameOperatorVersion
ksplayer:ksp_sound_playerksplayer ksp sound playereq2006

CPE	Name	Operator	Version
ksplayer:ksp_sound_player	ksplayer ksp sound player	eq	2006

References

www.exploit-db.com/exploits/9486

www.vupen.com/english/advisories/2009/2393

exchange.xforce.ibmcloud.com/vulnerabilities/52710

8.3 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.101 Low

EPSS

Percentile

94.9%

JSON

Related for CVE-2009-4964

prion1 cvelist1 nvd1