VYPR
Unrated severityNVD Advisory· Published May 11, 2009· Updated Jun 16, 2026

CVE-2009-1612

CVE-2009-1612

Description

Stack-based buffer overflow in the MPS.StormPlayer.1 ActiveX control in mps.dll 3.9.4.27 in Baofeng Storm allows remote attackers to execute arbitrary code via a long argument to the OnBeforeVideoDownload method, as exploited in the wild in April and May 2009. NOTE: some of these details are obtained from third party information. NOTE: it was later reported that 3.09.04.17 and earlier are also affected.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

9
  • Baofeng/Storm9 versions
    cpe:2.3:a:baofeng:storm:2.7.9_10:*:*:*:*:*:*:*+ 8 more
    • cpe:2.3:a:baofeng:storm:2.7.9_10:*:*:*:*:*:*:*
    • cpe:2.3:a:baofeng:storm:2.7.9_8:*:*:*:*:*:*:*
    • cpe:2.3:a:baofeng:storm:2.8:*:*:*:*:*:*:*
    • cpe:2.3:a:baofeng:storm:2.9:*:*:*:*:*:*:*
    • cpe:2.3:a:baofeng:storm:3.9.3_25:*:*:*:*:*:*:*
    • cpe:2.3:a:baofeng:storm:3.9.3_30:*:*:*:*:*:*:*
    • cpe:2.3:a:baofeng:storm:3.9.4_17:*:*:*:*:*:*:*
    • cpe:2.3:a:baofeng:storm:3.9.4_27:*:*:*:*:*:*:*
    • (no CPE)range: <=3.9.4.27

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.