Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact
9.3
CVSSv2

CVE-2007-5487

Published: 16/10/2007 Updated: 19/10/2017
CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6
VMScore: 935
Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Vulnerability Summary

Stack-based buffer overflow in COWON America jetAudio Basic 7.0.3 allows user-assisted remote malicious users to execute arbitrary code via a long URL in an EXTM3U section of a .m3u file.

Vulnerable Product Search on Vulmon Subscribe to Product

cowon america jetaudio 7.0.3 basic

Exploits

Exploit DB: jetAudio 7.x - '.m3u' Local Overwrite (SEH)
#!/usr/bin/python # jetAudio 7x (m3u File) 0day Local SEH Overwrite Exploit # Bug discovered by Krystian Kloskowski (h07) <h07@interiapl> # Tested on: jetAudio 703 Basic / 2k SP4 Polish # Shellcode: Windows Execute Command (calc) <metasploitcom> # Just for fun ;) ## from struct import pack m3u = ("#EXTM3U\n%s") shellcod ...

References

CWE-119http://www.securityfocus.com/bid/26069http://secunia.com/advisories/27149http://www.vupen.com/english/advisories/2007/3489https://exchange.xforce.ibmcloud.com/vulnerabilities/37204https://www.exploit-db.com/exploits/4531https://nvd.nist.govhttps://www.exploit-db.com/exploits/4531/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusionIMAPCVE-2024-36103CVE-2024-28995CVE-2024-37325CVE-2024-30078CVE-2024-30082SQL injectionCVE-2024-30052
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook