CVE-2009-20002 in MP3 Studioالمعلومات

الملخص

بحسب MITRE • 22/08/2025

Millenium MP3 Studio versions up to and including 2.0 is vulnerable to a stack-based buffer overflow when parsing .pls playlist files. The application fails to properly validate the length of the File1 field within the playlist, allowing an attacker to craft a malicious .pls file that overwrites the Structured Exception Handler (SEH) and executes arbitrary code. Exploitation requires the victim to open the file locally, though remote execution may be possible if the .pls extension is registered to the application and opened via a browser.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

مسؤول

VulnCheck

حجز

21/08/2025

إفشاء

22/08/2025

الاعتدال

تمت الموافقة

إدخال

VDB-320999

CPE

جاهز

CWE

CWE-121 (مؤكد)

CVSS

6.3 (VulDB)

EPSS

0.25352

KEV

لا

النشاطات

منخفض جدًا

المصادر

MITRE	https://www.cve.org/CVERecord?id=CVE-2009-20002
NVD	https://nvd.nist.gov/vuln/detail/CVE-2009-20002
CVE Details	https://www.cvedetails.com/cve/CVE-2009-20002/

التالي ▸نظرة عامة ◂ السابق

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!