CVE-2009-1831

EPSS 81.17% · P99 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2009-1831

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

The Nullsoft Modern Skins Support module (gen_ff.dll) in Nullsoft Winamp before 5.552 allows remote attackers to execute arbitrary code via a crafted MAKI file, which triggers an incorrect sign extension, an integer overflow, and a stack-based buffer overflow.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Nullsoft Winamp MAKI脚本解析模块栈缓冲区溢出漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Nullsoft Nullsoft Winamp是美国Nullsoft公司开发的一套免费的媒体播放器软件，现为美国在线（AOL）旗下产品之一。该软件支持多种媒体格式、皮肤更换和插件扩展等，同时也具备最基本的播放列表和媒体库功能。 Nullsoft Winamp 5.552之前版本的Nullsoft Modern Skins Support模块（gen_ff.dll）在解析.maki文件(一种编译过的脚本文件)时没有执行正确的类型赋值，可能导致缓冲区溢出。远程攻击者可通过网页或下载对用户提供流行皮肤文件，该

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Shenlong Deep Dive — AI Deep Analysis

10-question deep dive: root cause, exploitation, mitigation, urgency. Read summary free, full version requires login.

Read summary Full analysis (login)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2009-1831

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2009-1831

请登录查看更多情报信息。

http://vrt-sourcefire.blogspot.com/2009/05/winamp-maki-parsing-vulnerability.htmlx_refsource_MISC
https://www.exploit-db.com/exploits/8767exploitx_refsource_EXPLOIT-DB
https://www.exploit-db.com/exploits/8783exploitx_refsource_EXPLOIT-DB
https://www.exploit-db.com/exploits/8772exploitx_refsource_EXPLOIT-DB
https://www.exploit-db.com/exploits/8770exploitx_refsource_EXPLOIT-DB
http://www.securityfocus.com/bid/35052vdb-entryx_refsource_BID
https://exchange.xforce.ibmcloud.com/vulnerabilities/50664vdb-entryx_refsource_XF
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15683vdb-entrysignaturex_refsource_OVAL
https://nvd.nist.gov/vuln/detail/CVE-2009-1831

Same Patch Batch · n/a · 2009-05-29 · 25 CVEs total

CVE-2009-1812		collector.ch myGesuad SQL注入和跨站脚本攻击漏洞
CVE-2009-1823		Drupal 'Printer, e-mail and PDF versions' Module HTML注入漏洞
CVE-2009-1822		Joomla! InterJoomla ArtForms组件远程文件代码注入漏洞漏洞
CVE-2009-1821		DMXReady Registration Manager 'databases/webblogmanager.mdb'权限许可和访问控制漏洞
CVE-2009-1820		2Daybiz Custom T-shirt Design Script 'product.php'跨站脚本攻击漏洞
CVE-2009-1819		2Daybiz Custom T-shirt Design Script 'product.php' SQL注入漏洞
CVE-2009-1818		Max CMS 'admin_manager.asp' SQL注入漏洞
CVE-2009-1817		Digimode10 Maya 'm3u'和'm3l'畸形播放列表文件缓冲区溢出漏洞
CVE-2009-1816		My Game Script 'admin.php' SQL注入漏洞
CVE-2009-1815		Sonicspot Audioactive Player '.m3u'文件远程缓冲区溢出漏洞
CVE-2009-1814		Jevontech PHPenpals 'mail.php' SQL注入漏洞
CVE-2009-1813		SubmitterScript 'admin/index.php' SQL注入漏洞
CVE-2009-1829		Wireshark PCNFSD解析器拒绝服务漏洞
CVE-2009-1811		collector.ch myGesuad SQL注入和跨站脚本攻击漏洞
CVE-2009-1810		collector.ch myColex SQL注入和跨站脚本攻击漏洞
CVE-2009-1809		collector.ch myColex SQL注入和跨站脚本攻击漏洞
CVE-2009-1824		Arcabit ArcaVir杀毒软件IOCTL请求本地权限提升漏洞
CVE-2009-1792		StoneTrip Ston3D 操作系统命令注入漏洞
CVE-2009-1537		Microsoft DirectX QuickTime媒体文件解析代码执行漏洞
CVE-2009-1828		Mozilla Firefox keygen HTML标签拒绝服务漏洞

Showing top 20 of 25 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2009-1831

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2009-1831

I. Basic Information for CVE-2009-1831

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Shenlong Deep Dive — AI Deep Analysis

Affected Products

II. Public POCs for CVE-2009-1831

III. Intelligence Information for CVE-2009-1831

Same Patch Batch · n/a · 2009-05-29 · 25 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2009-1831

Leave a comment