vendor:
Ashampoo Burning Studio Elements
by:
Unknown
7.5
CVSS
HIGH
Heap Overflow
119
CWE
Product Name: Ashampoo Burning Studio Elements
Affected Version From: 10.0.9
Affected Version To: 10.0.9
Patch Exists: Unknown
Related CWE: Unknown
CPE: a:ashampoo:burning_studio_elements:10.0.9
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: Windows
Unknown
Ashampoo Burning Studio Elements 10.0.9 (.ashprj) Heap Overflow Vulnerability
The application suffers from a heap overflow vulnerability because it fails to properly sanitize user supplied input when parsing .ashprj project file format resulting in a crash corrupting the heap-based memory. The attacker can use this scenario to lure unsuspecting users to open malicious crafted .ashprj files with a potential for arbitrary code execution on the affected system.
Mitigation:
Input validation should be used to prevent the application from accepting maliciously crafted .ashprj files.