CVE-2009-1645

Mini-stream Easy Rm-mp3 Converter - Memory Corruption

Title source: rule

Description

Multiple stack-based buffer overflows in Mini-stream Easy RM-MP3 Converter 3.0.0.7 allow remote attackers to execute arbitrary code via (1) a long rtsp URL in a .ram file and (2) a long string in the HREF attribute of a REF element in a .asx file.

Exploits (2)

exploitdb WORKING POC VERIFIED
by G4N0K · perllocalwindows
https://www.exploit-db.com/exploits/8633
exploitdb WORKING POC VERIFIED
by G4N0K · perllocalwindows
https://www.exploit-db.com/exploits/8634

References (5)

Scores

EPSS 0.2560
EPSS Percentile 96.3%

Details

CWE
CWE-119
Status published
Products (1)
mini-stream/easy_rm-mp3_converter 3.0.0.7
Published May 15, 2009
Tracked Since Feb 18, 2026