vendor:
Free MP3 CD Ripper
by:
TUNISIAN CYBER
9.3
CVSS
HIGH
Buffer Overflow
119
CWE
Product Name: Free MP3 CD Ripper
Affected Version From: All versions
Affected Version To: All versions
Patch Exists: YES
Related CWE: N/A
CPE: //a:free_mp3_cd_ripper
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: WinXp/Windows 7 Pro
2015
Free MP3 CD Ripper All versions Local Buffer Overflow
Free MP3 CD Ripper is prone to a local buffer-overflow vulnerability because it fails to properly bounds-check user-supplied data before copying it into an insufficiently sized buffer. An attacker can exploit this issue to execute arbitrary code in the context of the application. Failed exploit attempts will result in a denial-of-service condition.
Mitigation:
Upgrade to the latest version of Free MP3 CD Ripper or apply the patch from the vendor.