CVE-2009-1039

CDex 1.70b2 - Remote Code Execution via Crafted Ogg Vorbis Info Header

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2009-1039. PoCs published by Nine:Situations:Group.

AI-analyzed exploit summary This exploit targets a local buffer overflow in CDex v1.70b2 by crafting a malicious .ogg file with an oversized Ogg Vorbis Info header. The payload includes shellcode to trigger a message box, leveraging a call esp instruction in kernel32.dll for execution.

Description

Buffer overflow in CDex 1.70b2 allows remote attackers to execute arbitrary code via a crafted Info header in an Ogg Vorbis (.ogg) file.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Nine:Situations:Group · phplocalwindows

https://www.exploit-db.com/exploits/8231

View Code ZIP pw:eip

This exploit targets a local buffer overflow in CDex v1.70b2 by crafting a malicious .ogg file with an oversized Ogg Vorbis Info header. The payload includes shellcode to trigger a message box, leveraging a call esp instruction in kernel32.dll for execution.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: CDex v1.70b2

No auth needed

Prerequisites: Local access to the target system · CDex v1.70b2 installed · Ability to execute PHP to generate the malicious .ogg file

MITRE ATT&CK