CVE-2011-5165

Опубликовано: 15 сент. 2012

Источник: nvd

CVSS2: 9.3

EPSS Высокий

Описание

Stack-based buffer overflow in Free MP3 CD Ripper 1.1, 2.6 and earlier, when converting a file, allows user-assisted remote attackers to execute arbitrary code via a crafted .wav file.

Ссылки

http://secunia.com/advisories/39193
Vendor Advisory
http://www.exploit-db.com/exploits/11975
Exploit
http://www.exploit-db.com/exploits/11976
Exploit
http://www.exploit-db.com/exploits/17727
Exploit
http://www.exploit-db.com/exploits/18142
Exploit
http://www.osvdb.org/63349
http://www.securityfocus.com/bid/39672
Exploit
https://www.exploit-db.com/exploits/36465/
Exploit
https://www.exploit-db.com/exploits/36826/
Exploit
https://www.exploit-db.com/exploits/36827/
Exploit
http://secunia.com/advisories/39193
Vendor Advisory
http://www.exploit-db.com/exploits/11975
Exploit
http://www.exploit-db.com/exploits/11976
Exploit
http://www.exploit-db.com/exploits/17727
Exploit
http://www.exploit-db.com/exploits/18142
Exploit
http://www.osvdb.org/63349
http://www.securityfocus.com/bid/39672
Exploit
https://www.exploit-db.com/exploits/36465/
Exploit
https://www.exploit-db.com/exploits/36826/
Exploit
https://www.exploit-db.com/exploits/36827/
Exploit

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:cleanersoft:free_mp3_cd_ripper:*:*:*:*:*:*:*:*

Версия до 2.6 (включая)

cpe:2.3:a:cleanersoft:free_mp3_cd_ripper:1.1:*:*:*:*:*:*:*

cpe:2.3:a:cleanersoft:free_mp3_cd_ripper:2.5:*:*:*:*:*:*:*

EPSS

Процентиль: 99%

0.76441

Высокий

9.3 Critical

CVSS2

Дефекты

CWE-119

Связанные уязвимости

GHSA-m559-x2r8-r7pv

github

больше 3 лет назад