Vulnerability Details CVE-2009-1815
Stack-based buffer overflow in Sonic Spot Audioactive Player 1.93b allows remote attackers to execute arbitrary code via a long string in a playlist file, as demonstrated by a long .mp3 URL in a .m3u file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.097
EPSS Ranking 92.6%
CVSS Severity
CVSS v2 Score 9.3
References
- http://www.securityfocus.com/bid/34987
- http://www.vupen.com/english/advisories/2009/1339
- https://www.exploit-db.com/exploits/8698
- https://www.exploit-db.com/exploits/8701
- http://www.securityfocus.com/bid/34987
- http://www.vupen.com/english/advisories/2009/1339
- https://www.exploit-db.com/exploits/8698
- https://www.exploit-db.com/exploits/8701
Products affected by CVE-2009-1815
-
cpe:2.3:a:sonicspot:audioactive_player:1.93b