Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2009-3995

EPSS 12.21% · P94
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2009-3995

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Multiple heap-based buffer overflows in IN_MOD.DLL (aka the Module Decoder Plug-in) in Winamp before 5.57, and libmikmod 3.1.12, might allow remote attackers to execute arbitrary code via (1) crafted samples or (2) crafted instrument definitions in an Impulse Tracker file. NOTE: some of these details are obtained from third party information.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Nullsoft Winamp模块解码器插件多个堆溢出漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Winamp是一款流行的媒体播放器,支持多种文件格式。 Winamp的模块解码器插件IN_MOD.DLL 存在多个堆缓冲溢出。远程攻击者可以借助(1)人特制样本或(2) Impulse Tracker文件中的特制instrument definitions,导致执行任意代码。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2009-3995

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2009-3995

登录查看更多情报信息。

Same Patch Batch · n/a · 2009-12-18 · 14 CVEs total

CVE-2007-2280HP OpenView Storage Data Protector备份客户端服务栈溢出漏洞
CVE-2007-2281HP OpenView Storage Data Protector 'rds.exe'服务堆溢出漏洞
CVE-2009-2875Cisco WebEx WRF文件解析多个缓冲区溢出漏洞
CVE-2009-2876Cisco WebEx WRF文件解析多个缓冲区溢出漏洞
CVE-2009-2877Cisco WebEx WRF文件解析多个缓冲区溢出漏洞
CVE-2009-2878Cisco WebEx WRF Player ‘atas32.dll’堆缓冲区溢出漏洞
CVE-2009-2879Cisco WebEx WRF Player ‘atas32.dll’堆缓冲区溢出漏洞
CVE-2009-2880Cisco WebEx WRF Player ‘atrpui.dll’缓冲区溢出漏洞
CVE-2009-3703Fahlstad WP-Forum多个SQL注入漏洞
CVE-2009-3996Nullsoft Winamp模块解码器插件Ultratracker文件堆溢出漏洞
CVE-2009-4356Nullsoft Winamp JPEG和PNG数据解析整数溢出漏洞
CVE-2009-4357IBM Rational ClearQuest CQWeb界面密码信息泄露漏洞
CVE-2009-3997Nullsoft Winamp模块解码器Oktalyzer文件堆溢出漏洞

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2009-3995

No comments yet

Leave a comment