CVE-2009-1039

Description

Buffer overflow in CDex 1.70b2 allows remote attackers to execute arbitrary code via a crafted Info header in an Ogg Vorbis (.ogg) file.

Affected products

• cdexos / cdex170b2 – 170b2

References

• MISChttp://www.securityfocus.com/bid/34164
• EXPLOIThttps://www.exploit-db.com/exploits/8231
• MISChttp://retrogod.altervista.org/9sg_cdex_ogg.html
• MISChttp://www.securityfocus.com/archive/1/501928/100/0/threaded
• MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/49304
• MISChttp://osvdb.org/52812