CVE-2009-5137

Mini-stream CastRipper 2.50.70 - Stack-based Buffer Overflow via Long URL in PLS Playlist

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2009-5137. PoCs published by zAx.

AI-analyzed exploit summary This exploit targets a stack overflow vulnerability in CastRipper 2.50.70 via a malformed .pls file. It uses a universal return address and shellcode to execute arbitrary commands (e.g., calc.exe) when the file is parsed.

Description

Stack-based buffer overflow in Mini-stream CastRipper 2.50.70 allows remote attackers to execute arbitrary code via a long URL in the [playlist] section in a .pls file, a different vector than CVE-2009-1667.

Exploits (1)

exploitdb WORKING POC VERIFIED

by zAx · perllocalwindows

https://www.exploit-db.com/exploits/8663

View Code ZIP pw:eip

This exploit targets a stack overflow vulnerability in CastRipper 2.50.70 via a malformed .pls file. It uses a universal return address and shellcode to execute arbitrary commands (e.g., calc.exe) when the file is parsed.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: CastRipper 2.50.70

No auth needed

Prerequisites: Victim must open the malicious .pls file in CastRipper

MITRE ATT&CK

T1203 - Exploitation for Client Execution T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1

Core References

Exploit exploit x_refsource_exploit-db

http://www.exploit-db.com/exploits/8663/

Scores

EPSS 0.0387

EPSS Percentile 88.8%

Details

CWE

CWE-119

Status published

Products (1)

mini-stream/castripper 2.50.70

Published Jan 03, 2014

Tracked Since Feb 18, 2026