CVE-2009-0491

Elecard MPEG Player <5.5 - Buffer Overflow

Title source: llm

Description

Stack-based buffer overflow in Elecard MPEG Player 5.5 build 15884.081218 allows remote attackers to execute arbitrary code via a M3U file containing a long URL.

Exploits (1)

exploitdb WORKING POC VERIFIED

by aBo MoHaMeD · perldoswindows

https://www.exploit-db.com/exploits/7637

View Code ZIP pw:eip

References (4)

[Third Party Advisory, VDB Entry] http://osvdb.org/51075

[Vendor Advisory] http://secunia.com/advisories/33355

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/7637

[Third Party Advisory] http://www.vupen.com/english/advisories/2009/0007

Scores

EPSS 0.2298

EPSS Percentile 95.9%

Details

CWE

CWE-119

Status published

Products (1)

elecard/elecard_mpeg_player < 5.5

Published Feb 10, 2009

Tracked Since Feb 18, 2026