Описание
Stack-based buffer overflow in ape_plugin.plg in Xilisoft Video Converter 3.1.53.0704n and 5.1.23.0402 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long string in a .cue file.
Ссылки
- Vendor Advisory
- Exploit
- Vendor Advisory
- Exploit
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:xilisoft:xilisoft_video_converter:3.1.53:*:*:*:*:*:*:*
cpe:2.3:a:xilisoft:xilisoft_video_converter:5.1.23:*:*:*:*:*:*:*
EPSS
Процентиль: 96%
0.24118
Средний
9.3 Critical
CVSS2
Дефекты
CWE-119
Связанные уязвимости
github
почти 4 года назад
Stack-based buffer overflow in ape_plugin.plg in Xilisoft Video Converter 3.1.53.0704n and 5.1.23.0402 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long string in a .cue file.
EPSS
Процентиль: 96%
0.24118
Средний
9.3 Critical
CVSS2
Дефекты
CWE-119