CVE-2009-3812

Otslabs Otsav DJ - Memory Corruption

Title source: rule

Description

Heap-based buffer overflow in OtsAV DJ trial version 1.85.64.0, Radio trial version 1.85.64.0, TV trial version 1.85.64.0, and Free version 1.77.001 allows remote attackers to execute arbitrary code via a long playlist in an Ots File List (.ofl) file.

Exploits (2)

exploitdb WORKING POC VERIFIED
by Stack · textdoswindows
https://www.exploit-db.com/exploits/9113
exploitdb WORKING POC VERIFIED
by hack4love · perldoswindows
https://www.exploit-db.com/exploits/9090

References (6)

Scores

EPSS 0.3463
EPSS Percentile 97.0%

Details

CWE
CWE-119
Status published
Products (3)
otslabs/otsav_dj 1.85.64.0 trial
otslabs/otsav_radio 1.85.64.0 trial
otslabs/otsav_tv 1.85.64.0 trial
Published Oct 27, 2009
Tracked Since Feb 18, 2026