CVE-2009-1831

Scores

EPSS

0.812high81.2%

0%20%40%60%80%100%

Percentile: 81.2%

CVSS

9.3critical2.0

0246810

CVSS Score: 9.3/10

All CVSS Scores

CVSS 2.0

9.3

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Description

The Nullsoft Modern Skins Support module (gen_ff.dll) in Nullsoft Winamp before 5.552 allows remote attackers to execute arbitrary code via a crafted MAKI file, which triggers an incorrect sign extension, an integer overflow, and a stack-based buffer overflow.

Scaner-VS 7 — a modern vulnerability management solution

Uses this database for vulnerability detection. High-speed search, cross-platform, advanced configuration audit, and flexible filtering. Suitable for organizations of any size.

Learn more about Scaner-VS 7

Sources

nvd

CWEs

CWE-189

Exploits

Exploit ID: 21256

Source: exploitdb

URL: https://www.exploit-db.com/exploits/21256

Exploit ID: 8767

Source: exploitdb

URL: https://www.exploit-db.com/exploits/8767

Exploit ID: 8770

Source: exploitdb

URL: https://www.exploit-db.com/exploits/8770

Exploit ID: 8772

Source: exploitdb

URL: https://www.exploit-db.com/exploits/8772

Exploit ID: 8783

Source: exploitdb

URL: https://www.exploit-db.com/exploits/8783

Vulnerable Software (1)

Type: Configuration

Vendor: *

Product: winamp

Operating System: * * *

Trait:

{  "cpe_match": [    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:*:*:*:*:*:*:*:*",      "versionEndIncluding": "5.55",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft...

{  "cpe_match": [    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:*:*:*:*:*:*:*:*",      "versionEndIncluding": "5.55",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:2.0:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:2.4:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:2.5e:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:2.6x:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:2.7x:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:2.10:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:2.24:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:2.50:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:2.60:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:2.60:*:full:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:2.60:*:lite:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:2.61:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:2.61:*:full:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:2.62:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:2.62:*:standard:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:2.64:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:2.64:*:standard:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:2.65:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:2.70:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:2.70:*:full:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:2.71:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:2.72:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:2.73:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:2.73:*:full:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:2.74:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:2.75:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:2.76:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:2.77:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:2.78:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:2.79:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:2.80:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:2.81:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:2.90:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:2.91:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:2.95:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:3.0:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:3.1:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:5.0:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:5.0.1:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:5.0.2:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:5.01:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:5.1:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:5.02:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:5.2:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:5.3:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:5.03:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:5.03a:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:5.04:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:5.05:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:5.5:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:5.06:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:5.07:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:5.08:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:5.08:c:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:5.08:d:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:5.08:e:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:5.08c:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:5.08d:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:5.08e:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:5.09:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:5.11:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:5.12:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:5.13:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:5.21:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:5.22:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:5.23:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:5.24:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:5.31:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:5.32:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:5.33:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:5.34:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:5.35:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:5.36:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:5.51:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:5.52:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:5.53:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:5.54:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:5.091:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:5.093:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:5.094:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:5.111:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:5.112:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:nullsoft:winamp:5.541:*:*:*:*:*:*:*",      "vulnerable": true    }  ],  "operator": "OR"}

Source: nvd

End of list

Russian Vulnerability Scanner Database

CVE-2009-1831

Scores

EPSS

CVSS

All CVSS Scores

Vector Breakdown

CVSS

Attack Vector

Attack Complexity

Authentication

Confidentiality Impact

Integrity Impact

Availability Impact

Description

Scaner-VS 7 — a modern vulnerability management solution

Sources

CWEs

Exploits

Vulnerable Software (1)