Vulnerabilities > CVE-2009-3201 - Numeric Errors vulnerability in ROB Schultz Media Player Classic 6.4.9

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

rob-schultz

CWE-189

exploit available

NVD

Published: 2009-09-15

Updated: 2017-09-19

Summary

Integer overflow in Media Player Classic 6.4.9 allows user-assisted remote attackers to cause a denial of service (application crash) via a MIDI file (.mid) with a malformed header, which triggers a buffer overflow, a different vulnerability than CVE-2007-4940.

Vulnerable Configurations

Part	Description	Count
Application	Rob_Schultz ROB Schultz Media Player Classic 6.4.9	1

Common Weakness Enumeration (CWE)

CWE-189 - Numeric Errors

Exploit-Db

description	Media Player Classic 6.4.9 (.mid) Integer Overflow PoC. CVE-2009-3201. Dos exploit for windows platform
file	exploits/windows/dos/9620.pl
id	EDB-ID:9620
last seen	2016-02-01
modified	2009-09-09
platform	windows
port
published	2009-09-09
reporter	PLATEN
source	https://www.exploit-db.com/download/9620/
title	Media Player Classic 6.4.9 - .mid Integer Overflow PoC
type	dos

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

Exploit-Db

References