CVE-2009-3201

ROB Schultz Media Player Classic - Numeric Error

Title source: rule

Description

Integer overflow in Media Player Classic 6.4.9 allows user-assisted remote attackers to cause a denial of service (application crash) via a MIDI file (.mid) with a malformed header, which triggers a buffer overflow, a different vulnerability than CVE-2007-4940.

Exploits (1)

exploitdb WORKING POC VERIFIED

by PLATEN · perldoswindows

https://www.exploit-db.com/exploits/9620

View Code ZIP pw:eip

References (2)

[Exploit] http://www.securityfocus.com/bid/36333

[Exploit, Third Party Advisory] http://www.exploit-db.com/exploits/9620

Scores

EPSS 0.0632

EPSS Percentile 91.0%

Details

CWE

CWE-189

Status published

Products (1)

rob_schultz/media_player_classic 6.4.9

Published Sep 15, 2009

Tracked Since Feb 18, 2026