CVE-2009-0182

High

Buffer overflow in VUPlayer 2.49 and earlier allows user-assisted attackers to execute arbitrary code via a long URL in a File line in a…

mitre·CWE-120·Published 2009-01-20

CVSS

8.8

EPSS

0.48

KEV

Exploits

cve.orgen

195 chars

Buffer overflow in VUPlayer 2.49 and earlier allows user-assisted attackers to execute arbitrary code via a long URL in a File line in a .pls file, as demonstrated by an http URL on a File1 line.

NVDen

195 chars

Buffer overflow in VUPlayer 2.49 and earlier allows user-assisted attackers to execute arbitrary code via a long URL in a File line in a .pls file, as demonstrated by an http URL on a File1 line.

Desbordamiento de búfer en VUPlayer v2.49 y anteriores permite a atacantes asistidos por el usuario la ejecución de código de su elección a través de una URL larga en una línea File en un fichero .pls, como se ha demostrado mediante una URL http sobre una línea File1.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	9.3	8.6	10.0	AV:N/AC:M/Au:N/C:C/I:C/A:C
3.1	Primary	NVD	8.8	2.8	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H