Published: 22/07/2009 Updated: 19/09/2017

CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6

VMScore: 940

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Stack-based buffer overflow in Sorinara Streaming Audio Player (SAP) 0.9 allows remote malicious users to execute arbitrary code via a long string in a playlist (.m3u) file.

Vulnerable Product	Search on Vulmon	Subscribe to Product
sorinara streaming audio player 0.9

#!/usr/bin/perl # Streaming Audio Player 09 (M3U File) Local Stack Core Exploit # Credit : wwwmilw0rmcom/exploits/8617 cyber-zone # By Stack # Tested On WinSp2 En / FR use strict; use warnings; my $header= "\x23\x45\x58\x54\x4D\x33\x55\x0D\x68\x74\x74\x70\x3A\x2F\x2F"; my $shellcode = "\xeb\x03\x59\xeb\x05\xe8\xf8\xff\xff\xff\x4f\x49\x49 ...

#!/usr/bin/perl # # # Found By : Cyber-Zone (ABDELKHALEK) # # # Thanx To All Friends : Hussin X , Jiko , Stack , ZoRLu , ThE g0bL!N , r1z , Mag!c ompo , SimO-s0fT All MoroCCaN HaCkerS # # FIGUIG OwnZ !!! # # Streaming Audio Player 09 (M3U File) Local Buffer Overflow PoC # #Olly Registers #EAX 00197D20 #ECX 0000020E #EDX 00126F84 #EBX 00193DA ...

CWE-119 http://www.securityfocus.com/bid/34842 https://exchange.xforce.ibmcloud.com/vulnerabilities/50339 http://www.exploit-db.com/exploits/8620 http://www.exploit-db.com/exploits/8617 https://nvd.nist.gov https://www.exploit-db.com/exploits/8620/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2009-2568

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect