CVE-2009-20002 in MP3 Studioinfo

Zusammenfassung

von MITRE • 22.08.2025

Millenium MP3 Studio versions up to and including 2.0 is vulnerable to a stack-based buffer overflow when parsing .pls playlist files. The application fails to properly validate the length of the File1 field within the playlist, allowing an attacker to craft a malicious .pls file that overwrites the Structured Exception Handler (SEH) and executes arbitrary code. Exploitation requires the victim to open the file locally, though remote execution may be possible if the .pls extension is registered to the application and opened via a browser.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Zuständig

VulnCheck

Reservieren

21.08.2025

Veröffentlichung

22.08.2025

Moderieren

akzeptiert

Eintrag

VDB-320999

CPE

bereit

CWE

CWE-121 (bestätigt)

CVSS

6.3 (VulDB)

EPSS

0.25352

KEV

nein

Aktivitäten

very low

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2009-20002
NVD	https://nvd.nist.gov/vuln/detail/CVE-2009-20002
CVE Details	https://www.cvedetails.com/cve/CVE-2009-20002/

◂ Zurück Übersicht Weiter ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!