CVE-2009-5109

Mini-stream Ripper - Memory Corruption

Title source: rule

Description

Stack-based buffer overflow in Mini-Stream Ripper 3.0.1.1 allows remote attackers to execute arbitrary code via a long entry in a .pls file.

Exploits (5)

metasploit WORKING POC NORMAL
by Unknown · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/misc/mini_stream.rb
exploitdb WORKING POC VERIFIED
by dijital1 · pythonlocalwindows
https://www.exploit-db.com/exploits/10747
exploitdb WORKING POC VERIFIED
by mr_me · clocalwindows
https://www.exploit-db.com/exploits/10745
exploitdb WORKING POC VERIFIED
by jacky · perllocalwindows
https://www.exploit-db.com/exploits/10782
exploitdb WORKING POC VERIFIED
by Metasploit · rubylocalwindows
https://www.exploit-db.com/exploits/18082

References (5)

Scores

EPSS 0.6016
EPSS Percentile 98.2%

Classification

CWE
CWE-119
Status draft

Affected Products (1)

mini-stream/ripper

Timeline

Published Dec 25, 2011
Tracked Since Feb 18, 2026