CVE-2009-3221

Audio Lib Player - Stack-based Buffer Overflow via Long URL in .m3u Playlist File

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2009-3221. PoCs published by blake.

AI-analyzed exploit summary This exploit targets a SEH overwrite vulnerability in Audio Lib Player via a malicious M3U playlist file. It delivers a bind shell payload (port 4444) using a structured buffer overflow with NOP sled, shellcode, and SEH manipulation.

Description

Stack-based buffer overflow in Audio Lib Player (ALP) allows remote attackers to execute arbitrary code via a long URL in a .m3u playlist file.

Exploits (1)

exploitdb WORKING POC VERIFIED
by blake · pythonlocalwindows
https://www.exploit-db.com/exploits/9610

This exploit targets a SEH overwrite vulnerability in Audio Lib Player via a malicious M3U playlist file. It delivers a bind shell payload (port 4444) using a structured buffer overflow with NOP sled, shellcode, and SEH manipulation.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Audio Lib Player (version unspecified)
No auth needed
Prerequisites: Victim must open the malicious M3U file in Audio Lib Player · Network access to the target for the bind shell
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/51873
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/35867
Vendor Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2009/1963
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/56047

Scores

EPSS 0.0581
EPSS Percentile 92.2%

Details

CWE
CWE-119
Status published
Products (1)
basicunivers.free.fr/audio_lib_player
Published Sep 16, 2009
Tracked Since Feb 18, 2026