CVE-2009-1351

Heap-based buffer overflow in Apollo 37zz allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a long URI in a playlist (.m3u) file.

Published: Apr 21, 2009
Updated: Apr 13, 2023
CVE: CVE-2009-1351
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

CWEs:

CWE-119

Affected Software
References

Software	From	Fixed in
heikki_ylinen / apollo	37zz	37zz.x

http://osvdb.org/53770
http://secunia.com/advisories/34050
http://www.securityfocus.com/bid/34554
https://www.exploit-db.com/exploits/8451

Vulnerability Database

290,273

CVE-2009-1351