CVE-2009-1327

Mini-stream WM Downloader - Memory Corruption

Title source: rule

Description

Stack-based buffer overflow in Mini-stream WM Downloader 3.0.0.9 allows remote attackers to execute arbitrary code via a long URI in a playlist (.m3u) file.

Exploits (6)

exploitdb WORKING POC VERIFIED

by Cyber-Zone · perldoswindows

https://www.exploit-db.com/exploits/8403

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by Stack · clocalwindows

https://www.exploit-db.com/exploits/8411

View Code ZIP pw:eip

exploitdb WORKING POC

perldoswindows

https://www.exploit-db.com/exploits/8405

View on exploitdb

exploitdb WORKING POC

perldoswindows

https://www.exploit-db.com/exploits/8404

View on exploitdb

exploitdb WORKING POC

perldoswindows

https://www.exploit-db.com/exploits/8407

View on exploitdb

exploitdb WORKING POC

perldoswindows

https://www.exploit-db.com/exploits/8402

View on exploitdb

References (5)

[Vendor Advisory] http://secunia.com/advisories/34674

[Exploit] http://www.securityfocus.com/bid/34494

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/49842

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/8403

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/8411

Scores

EPSS 0.2824

EPSS Percentile 96.4%

Classification

CWE

CWE-119

Status draft

Affected Products (1)

mini-stream/wm_downloader

Timeline

Published Apr 17, 2009

Tracked Since Feb 18, 2026