CVE-2009-2568

Sorinara SAP 0.9 - RCE

Title source: llm

Description

Stack-based buffer overflow in Sorinara Streaming Audio Player (SAP) 0.9 allows remote attackers to execute arbitrary code via a long string in a playlist (.m3u) file.

Exploits (2)

exploitdb WORKING POC VERIFIED

by Cyber-Zone · perldoswindows

https://www.exploit-db.com/exploits/8617

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by Stack · perllocalwindows

https://www.exploit-db.com/exploits/8620

View Code ZIP pw:eip

References (4)

[Exploit] http://www.securityfocus.com/bid/34842

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/50339

[Exploit, Third Party Advisory] http://www.exploit-db.com/exploits/8617

[Exploit, Third Party Advisory] http://www.exploit-db.com/exploits/8620

Scores

EPSS 0.2997

EPSS Percentile 96.6%

Classification

CWE

CWE-119

Status draft

Affected Products (1)

sorinara/streaming_audio_player

Timeline

Published Jul 22, 2009

Tracked Since Feb 18, 2026