CVE-2009-2817

Apple iTunes < 9.0.1 - Remote Code Execution via Crafted .pls File

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2009-2817. PoCs published by S2 Crew, Roger Hart.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in iTunes 9.0 by crafting a malicious .pls file. The payload manipulates heap memory to achieve arbitrary code execution via a crafted playlist file.

Description

Buffer overflow in Apple iTunes before 9.0.1 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted .pls file.

Exploits (2)

exploitdb WORKING POC VERIFIED

by S2 Crew · rubylocalmultiple

https://www.exploit-db.com/exploits/11491

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in iTunes 9.0 by crafting a malicious .pls file. The payload manipulates heap memory to achieve arbitrary code execution via a crafted playlist file.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: iTunes 9.0

No auth needed

Prerequisites: Victim must open the malicious .pls file in iTunes

MITRE ATT&CK

T1203 - Exploitation for Client Execution T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →

exploitdb WORKING POC VERIFIED

by Roger Hart · rubydososx

https://www.exploit-db.com/exploits/33235

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in Apple iTunes versions prior to 9.0.1. It crafts a malicious .pls playlist file to trigger arbitrary code execution via a heap-based overflow, leveraging specific memory addresses and ROP-like techniques.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Apple iTunes < 9.0.1

No auth needed

Prerequisites: Victim must open the malicious .pls file in a vulnerable version of iTunes

MITRE ATT&CK

T1203 - Exploitation for Client Execution T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4

Core References

Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6290

Patch, Vendor Advisory vendor-advisory x_refsource_apple

http://lists.apple.com/archives/security-announce/2009/Sep/msg00006.html

Patch, Vendor Advisory x_refsource_confirm

http://support.apple.com/kb/HT3884

Patch vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/36478

Scores

EPSS 0.0895

EPSS Percentile 94.6%

Details

CWE

CWE-119

Status published

Products (25)

apple/itunes 1.0 (3 CPE variants)

apple/itunes 1.1.1 (3 CPE variants)

apple/itunes 1.1.2 (3 CPE variants)

apple/itunes 2.0 (3 CPE variants)

apple/itunes 2.0.1 (3 CPE variants)

apple/itunes 2.0.2 (3 CPE variants)

apple/itunes 2.0.3 (3 CPE variants)

apple/itunes 2.0.4 (3 CPE variants)

apple/itunes 3.0

apple/itunes 3.0.1

... and 15 more

Published Sep 24, 2009

Tracked Since Feb 18, 2026