MitreCVE-2011-5165CVE-2011-5165
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
Confidence
High
EPSS
Percentile
97.7%
Stack-based buffer overflow in Free MP3 CD Ripper 1.1, 2.6 and earlier, when converting a file, allows user-assisted remote attackers to execute arbitrary code via a crafted .wav file.
Affected configurations
| Vendor | Product | Version | CPE |
|---|---|---|---|
| cleanersoft | free_mp3_cd_ripper | * | cpe:2.3:a:cleanersoft:free_mp3_cd_ripper:*:*:*:*:*:*:*:* |
| cleanersoft | free_mp3_cd_ripper | 1.1 | cpe:2.3:a:cleanersoft:free_mp3_cd_ripper:1.1:*:*:*:*:*:*:* |
| cleanersoft | free_mp3_cd_ripper | 2.5 | cpe:2.3:a:cleanersoft:free_mp3_cd_ripper:2.5:*:*:*:*:*:*:* |
References
secunia.com/advisories/39193
www.exploit-db.com/exploits/11975
www.exploit-db.com/exploits/11976
www.exploit-db.com/exploits/17727
www.exploit-db.com/exploits/18142
www.osvdb.org/63349
www.securityfocus.com/bid/39672
www.exploit-db.com/exploits/36465/
www.exploit-db.com/exploits/36826/
www.exploit-db.com/exploits/36827/
Related
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
Confidence
High
EPSS
Percentile
97.7%