What is CVE-2009-5109?

CVE-2009-5109 is a vulnerability in Mini-stream Ripper, classified under Improper Restriction of Operations within the Bounds of a Memory Buffer. Published 2011-12-25.

Is CVE-2009-5109 known to be exploited?

4 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Buffer overflow in Mini-stream Ripper

CVE-2009-5109

Stack-based buffer overflow in Mini-Stream Ripper 3.0.1.1 allows remote attackers to execute arbitrary code via a long entry in a .pls file.

Vulnerability class: Buffer Overflow

EPSS: 0.602 (98.3th percentile) — read the EPSS interpretation.

Affected products

Mini-stream Ripper — versions 3.0.1.1
N/a — versions n/a

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

Public proof-of-concept exploits

References

10782 (Exploit, exploit, x_refsource_EXPLOIT-DB)
18082 (Exploit, exploit, x_refsource_EXPLOIT-DB)
10745 (Exploit, exploit, x_refsource_EXPLOIT-DB)
10747 (Exploit, exploit, x_refsource_EXPLOIT-DB)
61341 (x_refsource_OSVDB, vdb-entry)

Frequently asked questions

What is CVE-2009-5109?: CVE-2009-5109 is a vulnerability in Mini-stream Ripper, classified under Improper Restriction of Operations within the Bounds of a Memory Buffer. Published 2011-12-25.
Is CVE-2009-5109 known to be exploited?: 4 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.