Integer Overflow Vulnerability in Microsoft Windows Media Player
CVE-2009-1331

Currently unrated

Key Information:

Vendor: Microsoft
Status: Windows Media Player
Vendor: CVE Published:; 17 April 2009

Badges

👾 Exploit Exists🟡 Public PoC🟣 EPSS 29%

What is CVE-2009-1331?

An integer overflow vulnerability exists in Microsoft Windows Media Player version 11.0.5721.5260, potentially allowing remote attackers to exploit the flaw by sending crafted .mid files. If successfully executed, this can lead to a denial of service as the application may crash when processing such files. Awareness and timely updates are essential to mitigate this risk.

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2009-1331 - Proof of Concept

References

http://www.securityfocus.com/bid/34534

vdb-entryx_refsource_BID

http://osvdb.org/53804

vdb-entryx_refsource_OSVDB

https://www.exploit-db.com/exploits/8445

exploitx_refsource_EXPLOIT-DB

EPSS Score

29% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

🟡
Public PoC available
Apr 17, 2009
👾
Exploit known to exist
Apr 17, 2009
Vulnerability published
Apr 17, 2009
Vulnerability Reserved
Apr 17, 2009

CVE-2009-1331 Data

JSON