CVE-2009-2485
HT-MP3Player 1.0 - Buffer Overflow
Title source: llmDescription
Stack-based buffer overflow in HT-MP3Player 1.0 allows remote attackers to execute arbitrary code via a long string in a .ht3 file.
Exploits (4)
exploitdb
WORKING POC
VERIFIED
by His0k4 · pythonlocalwindows
https://www.exploit-db.com/exploits/9038
exploitdb
WORKING POC
VERIFIED
by hack4love · perllocalwindows
https://www.exploit-db.com/exploits/9034
exploitdb
WORKING POC
VERIFIED
by Metasploit · rubylocalwindows
https://www.exploit-db.com/exploits/16646
metasploit
WORKING POC
GOOD
rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/fileformat/ht_mp3player_ht3_bof.rb
Scores
EPSS
0.8002
EPSS Percentile
99.1%
Classification
CWE
CWE-119
Status
draft
Affected Products (1)
tingan/ht-mp3player
Timeline
Published
Jul 16, 2009
Tracked Since
Feb 18, 2026