CVE-2009-0261

EffectMatrix Total Video Player <1.31 - Buffer Overflow

Title source: llm

Description

Stack-based buffer overflow in EffectMatrix Total Video Player 1.31 allows user-assisted attackers to execute arbitrary code via a Skins\DefaultSkin\DefaultSkin.ini file with a large ColumnHeaderSpan value.

Exploits (2)

exploitdb WORKING POC VERIFIED

by His0k4 · pythonlocalwindows

https://www.exploit-db.com/exploits/7839

View Code ZIP pw:eip

metasploit WORKING POC NORMAL

by Mike Czumak · rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/fileformat/total_video_player_ini_bof.rb

View Code ZIP pw:eip

References (3)

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/48140

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/33373

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/7839

Scores

EPSS 0.6952

EPSS Percentile 98.6%

Classification

CWE

CWE-119

Status draft

Affected Products (1)

effectmatrix/total_video_player

Timeline

Published Jan 23, 2009

Tracked Since Feb 18, 2026