CVE-2009-2650

Sorcerer Software MultiMedia Jukebox 4.0 - Buffer Overflow

Title source: llm

Description

Heap-based buffer overflow in Sorcerer Software MultiMedia Jukebox 4.0 Build 020124 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted (1) .m3u or possibly (2) .pst file.

Exploits (4)

exploitdb WORKING POC VERIFIED

by dijital1 · rubylocalwindows

https://www.exploit-db.com/exploits/10744

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by mr_me · pythonlocalwindows

https://www.exploit-db.com/exploits/9551

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by hack4love · perldoswindows

https://www.exploit-db.com/exploits/9173

View Code ZIP pw:eip

metasploit WORKING POC NORMAL

rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/fileformat/mediajukebox.rb

View Code ZIP pw:eip

References (2)

[Vendor Advisory] http://secunia.com/advisories/35860

[Exploit, Third Party Advisory] http://www.exploit-db.com/exploits/9173

Scores

EPSS 0.6887

EPSS Percentile 98.6%

Details

CWE

CWE-119

Status published

Products (1)

sorcerersoftware/multimedia_jukebox 4.0

Published Jul 30, 2009

Tracked Since Feb 18, 2026