Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2008-0959

Опубликовано: 29 мая 2008
Источник: nvd
CVSS2: 6.8
EPSS Средний

Описание

Multiple stack-based buffer overflows in the Online Media Technologies NCTSoft NCTAudioInformation2 ActiveX control in NCTAudioInformation2.dll, as used in (1) Power Audio CD Grabber 1.0, (2) Power Audio CD Burner 1.02, (3) CinematicMP3 1.4.0.0, (4) Alive MP3 WAV Converter 3.9.3.2, and possibly other products, allow remote attackers to execute arbitrary code via unspecified vectors.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:alivemedia:alive_mp3_wav_converter:3.9.3.2:*:*:*:*:*:*:*
cpe:2.3:a:online_media_technologies:nctaudioeditor_activex_control:*:*:*:*:*:*:*:*
cpe:2.3:a:online_media_technologies:nctaudiostudio_activex_control:*:*:*:*:*:*:*:*
cpe:2.3:a:orion_studios:cinematicmp3:1.4.0.0:*:*:*:*:*:*:*
cpe:2.3:a:ussun:power_audio_cd_burner:1.02:*:*:*:*:*:*:*
cpe:2.3:a:ussun:power_audio_cd_grabber:1.0:*:*:*:*:*:*:*

EPSS

Процентиль: 96%
0.28096
Средний

6.8 Medium

CVSS2

Дефекты

CWE-119

Связанные уязвимости

github логотип

GHSA-3jxx-mhp5-7g48

github
почти 4 года назад

Multiple stack-based buffer overflows in the Online Media Technologies NCTSoft NCTAudioInformation2 ActiveX control in NCTAudioInformation2.dll, as used in (1) Power Audio CD Grabber 1.0, (2) Power Audio CD Burner 1.02, (3) CinematicMP3 1.4.0.0, (4) Alive MP3 WAV Converter 3.9.3.2, and possibly other products, allow remote attackers to execute arbitrary code via unspecified vectors.

EPSS

Процентиль: 96%
0.28096
Средний

6.8 Medium

CVSS2

Дефекты

CWE-119