CVE-2009-0476

MultiMedia Soft AdjMmsEng.dll <7.11.2.7 - Buffer Overflow

Title source: llm

Description

Stack-based buffer overflow in MultiMedia Soft AdjMmsEng.dll 7.11.1.0 and 7.11.2.7, as distributed in multiple MultiMedia Soft audio components for .NET, allows remote attackers to execute arbitrary code via a long string in a playlist (.pls) file, as originally reported for Euphonics Audio Player 1.0. NOTE: some of these details are obtained from third party information.

Exploits (10)

exploitdb WORKING POC VERIFIED

by sanjeev gupta · perllocalwindows

https://www.exploit-db.com/exploits/15013

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by Metasploit · rubylocalwindows

https://www.exploit-db.com/exploits/16626

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by Sébastien Duquette · rubylocalwindows

https://www.exploit-db.com/exploits/11079

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by germaya_x · perllocalwindows

https://www.exploit-db.com/exploits/10353

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by Houssamix · perllocalwindows

https://www.exploit-db.com/exploits/7973

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by Single Eye · clocalwindows

https://www.exploit-db.com/exploits/7974

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by h4ck3r#47 · perllocalwindows

https://www.exploit-db.com/exploits/7958

View Code ZIP pw:eip

metasploit WORKING POC GOOD

by germaya_x, dookie · rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/fileformat/audio_wkstn_pls.rb

View Code ZIP pw:eip

metasploit WORKING POC GOOD

by Philip OKeefe · rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/fileformat/audiotran_pls_1424.rb

View Code ZIP pw:eip

metasploit WORKING POC GOOD

by Sebastien Duquette, dookie · rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/fileformat/audiotran_pls.rb

View Code ZIP pw:eip

References (8)

[Vendor Advisory] http://secunia.com/advisories/33791

[Vendor Advisory] http://secunia.com/advisories/33817

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/500652/100/0/threaded

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/33589

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/7958

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/7973

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/7974

[Third Party Advisory] http://www.vupen.com/english/advisories/2009/0316

Scores

EPSS 0.8326

EPSS Percentile 99.3%

Details

CWE

CWE-119

Status published

Products (5)

multimediasoft/audio_dj_studio_for_.net

multimediasoft/audio_sound_editer_for_.net

multimediasoft/audio_sound_recorder_for_.net

multimediasoft/audio_sound_studio_for_.net

multimediasoft/audio_sound_suite_for_.net

Published Feb 08, 2009

Tracked Since Feb 18, 2026