CVE-2009-0174

VUPlayer 2.49 - Remote Code Execution via Long ASF URI in ASX REF Element

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 4 public exploits for CVE-2009-0174. PoCs published by sCORPINo, His0k4, Houssamix.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in VUPlayer 2.49 by crafting a malicious .asx file. It uses a JMP ESP address from shell32.dll to redirect execution to the embedded shellcode, which spawns a calculator as a proof of concept.

Description

Stack-based buffer overflow in VUPlayer 2.49 allows remote attackers to execute arbitrary code via a long .asf URI in the HREF attribute of a REF element in a .asx file.

Exploits (4)

exploitdb WORKING POC VERIFIED
by sCORPINo · perllocalwindows
https://www.exploit-db.com/exploits/7714

This exploit targets a buffer overflow vulnerability in VUPlayer 2.49 by crafting a malicious .asx file. It uses a JMP ESP address from shell32.dll to redirect execution to the embedded shellcode, which spawns a calculator as a proof of concept.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: VUPlayer 2.49
No auth needed
Prerequisites: Victim must open the malicious .asx file with VUPlayer
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by His0k4 · pythonlocalwindows
https://www.exploit-db.com/exploits/7715

This exploit targets a buffer overflow vulnerability in VUPlayer 2.49 via a maliciously crafted .ASX file. It leverages a universal return address from bass.dll and includes a Metasploit-generated shellcode to execute arbitrary commands (e.g., launching notepad).

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: VUPlayer 2.49
No auth needed
Prerequisites: Victim must open the crafted .ASX file in VUPlayer 2.49
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by Houssamix · perllocalwindows
https://www.exploit-db.com/exploits/7713

This exploit targets a stack overflow vulnerability in VUPlayer 2.49 via a maliciously crafted .asx file. It uses a NOP sled and alphanumeric shellcode to execute arbitrary commands (e.g., launching calc.exe) when the file is opened.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: VUPlayer 2.49
No auth needed
Prerequisites: Victim must open the crafted .asx file with VUPlayer 2.49
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by aBo MoHaMeD · perldoswindows
https://www.exploit-db.com/exploits/7709

This exploit is a proof-of-concept for a local stack overflow vulnerability in VUPlayer 2.49, triggered via a maliciously crafted .asx file. The code demonstrates control over EIP and ECX registers, with a payload designed to overflow the buffer.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: VUPlayer 2.49
No auth needed
Prerequisites: Victim must open a malicious .asx file
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (7)

Core 7
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/47851
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/33185
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/7715
Third Party Advisory third-party-advisory x_refsource_sreason
http://securityreason.com/securityalert/4918
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/7713
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/7709
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/7714

Scores

EPSS 0.1168
EPSS Percentile 95.5%

Details

CWE
CWE-119
Status published
Products (1)
vuplayer/vuplayer 2.49
Published Jan 20, 2009
Tracked Since Feb 18, 2026