Integer Overflow and Buffer Overflow Vulnerability in Nullsoft Winamp
CVE-2009-1831

Currently unrated

Key Information:

Vendor: Nullsoft
Status: Winamp
Vendor: CVE Published:; 29 May 2009

Badges

👾 Exploit Exists🟡 Public PoC🟣 EPSS 81%

What is CVE-2009-1831?

The Modern Skins Support module (gen_ff.dll) in Nullsoft Winamp prior to version 5.552 contains a vulnerability that allows remote attackers to execute arbitrary code through a specially crafted MAKI file. This security issue arises from improper sign extension, leading to an integer overflow and subsequent stack-based buffer overflow, which can compromise the integrity and security of affected systems.

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2009-1831 - Proof of Concept

References

http://www.securityfocus.com/bid/35052

vdb-entryx_refsource_BID

https://www.exploit-db.com/exploits/8783

exploitx_refsource_EXPLOIT-DB

https://exchange.xforce.ibmcloud.com/vulnerabilities/50664

vdb-entryx_refsource_XF

EPSS Score

81% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

🟡
Public PoC available
May 29, 2009
👾
Exploit known to exist
May 29, 2009
Vulnerability published
May 29, 2009
Vulnerability Reserved
May 29, 2009

CVE-2009-1831 Data

JSON