Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
9.3
CVSSv2

CVE-2007-5709

Published: 30/10/2007 Updated: 29/09/2017
CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6
VMScore: 935
Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Subscribe to Sonicstage Connect Player

Vulnerability Summary

Stack-based buffer overflow in Sony SonicStage CONNECT Player (CP) 4.3 allows remote malicious users to execute arbitrary code via a long file name in an M3U file.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

sony sonicstage connect player 4.3

Exploits

Exploit DB: Sony CONNECT Player 4.x - '.m3u' Local Stack Overflow
#!/usr/bin/python #Secunia Advisory : SA27270 #Release Date : 2007-10-29 # Sony CONNECT Player M3U Playlist Processing Stack Buffer Overflow (m3u File) Local Exploit # Bug discovered by Parvez Anwar # Exploit Written by TaMBaRuS (tambarus@gmailcom) # Tested on: Sony CONNECT Player (SonicStage) 4x installed on Windows XP SP2/ 2k SP4 # Shellcode ...

References

CWE-119http://secunia.com/advisories/27270http://www.securityfocus.com/bid/26241http://osvdb.org/41998https://exchange.xforce.ibmcloud.com/vulnerabilities/38160https://www.exploit-db.com/exploits/4583https://nvd.nist.govhttps://www.exploit-db.com/exploits/4583/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4644unprivilegedCVE-2024-3494CVE-2024-22460CVE-2024-26026CVE-2024-23473firewallCVE-2024-28889XML external entity
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook