Published: 30/07/2009 Updated: 19/09/2017

CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6

VMScore: 945

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Heap-based buffer overflow in Sorcerer Software MultiMedia Jukebox 4.0 Build 020124 allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted (1) .m3u or possibly (2) .pst file.

Vulnerable Product	Search on Vulmon	Subscribe to Product
sorcerersoftware multimedia jukebox 4.0

#!/usr/bin/python # # ###################################################################### # # Media Jukebox 8 (pls) Universal Local Buffer Exploit (SEH) # Author: mr_me # Download: downloadchipeu/en/Media-Jukebox-80400_76134html # Note: we needed a header to trigger this one ;) # Tested on: Wind0ws XP and Vist@ # Greetz: offensive ...

#!/usr/bin/perl # Found By :: HACK4LOVE # MultiMedia Jukebox 40 Build 020124 (pst / m3u ) Local Heap Overflow PoC # wwwbrothersoftcom/sorcerer-software-multimedia-jukebox-251913html ######################################################################################## # special thanks for sec-codecom and sniper code ################ ...

## # $Id: mediajukeboxrb 11516 2011-01-08 01:13:26Z jduck $ ## ## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions Please see the Metasploit # Framework web site for more information on licensing and terms of use # metasploitcom/framework/ ## require 'msf/core' class Me ...

CWE-119 http://secunia.com/advisories/35860 http://www.exploit-db.com/exploits/9173 https://nvd.nist.gov https://www.exploit-db.com/exploits/9551/

CVE-2009-2650

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect