CVE-2009-2650

Sorcerer Software MultiMedia Jukebox 4.0 - Buffer Overflow

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 4 public exploits for CVE-2009-2650. PoCs published by dijital1, mr_me, hack4love, including Metasploit module exploits/windows/fileformat/mediajukebox.

AI-analyzed exploit summary This Metasploit module exploits a stack buffer overflow in Media Jukebox 8.0.400 via a crafted m3u or pls file, leveraging SEH overwrite for arbitrary code execution. The exploit uses a 'pop, pop, ret' gadget from dsp_mjMain.dll to bypass protections.

Description

Heap-based buffer overflow in Sorcerer Software MultiMedia Jukebox 4.0 Build 020124 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted (1) .m3u or possibly (2) .pst file.

Exploits (4)

exploitdb WORKING POC VERIFIED
by dijital1 · rubylocalwindows
https://www.exploit-db.com/exploits/10744

This Metasploit module exploits a stack buffer overflow in Media Jukebox 8.0.400 via a crafted m3u or pls file, leveraging SEH overwrite for arbitrary code execution. The exploit uses a 'pop, pop, ret' gadget from dsp_mjMain.dll to bypass protections.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Media Jukebox 8.0.400
No auth needed
Prerequisites: Victim must open the malicious m3u/pls file
devstral-2 · analyzed Feb 18, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by mr_me · pythonlocalwindows
https://www.exploit-db.com/exploits/9551

This exploit targets a local buffer overflow vulnerability in Media Jukebox 8 via a crafted .pls playlist file. It leverages SEH overwrite with a universal p/p/r address from wnaspi32.dll and includes a reverse TCP shell payload.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Media Jukebox 8.0.400
No auth needed
Prerequisites: Victim must open the malicious .pls file in Media Jukebox 8
devstral-2 · analyzed Feb 18, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by hack4love · perldoswindows
https://www.exploit-db.com/exploits/9173

This exploit is a Perl script that generates a malicious .m3u file containing a large buffer of 'A' characters (5000 bytes) to trigger a local heap overflow in MultiMedia Jukebox 4.0 Build 020124. The vulnerability is exploited by writing the payload to a file, which when opened by the target software, causes a crash due to the overflow.

Classification
Working Poc 90%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: MultiMedia Jukebox 4.0 Build 020124
No auth needed
Prerequisites: Ability to write a file to the target system · Target software installed and configured to open .m3u files
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC NORMAL
rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/fileformat/mediajukebox.rb

This Metasploit module exploits a stack buffer overflow in Media Jukebox 8.0.400 via a crafted m3u or pls file, leveraging SEH overwrite for remote code execution. It targets specific Windows XP versions with known return addresses in dsp_mjMain.dll.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Media Jukebox 8.0.400
No auth needed
Prerequisites: Victim must open the malicious m3u/pls file in Media Jukebox
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2
Core References
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/35860
Exploit, Third Party Advisory exploit x_refsource_exploit-db
http://www.exploit-db.com/exploits/9173

Scores

EPSS 0.3069
EPSS Percentile 98.0%

Details

CWE
CWE-119
Status published
Products (1)
sorcerersoftware/multimedia_jukebox 4.0
Published Jul 30, 2009
Tracked Since Feb 18, 2026