CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
Confidence
High
EPSS
Percentile
97.7%
Stack-based buffer overflow in Free MP3 CD Ripper 1.1, 2.6 and earlier, when converting a file, allows user-assisted remote attackers to execute arbitrary code via a crafted .wav file.
Vendor | Product | Version | CPE |
---|---|---|---|
cleanersoft | free_mp3_cd_ripper | * | cpe:2.3:a:cleanersoft:free_mp3_cd_ripper:*:*:*:*:*:*:*:* |
cleanersoft | free_mp3_cd_ripper | 1.1 | cpe:2.3:a:cleanersoft:free_mp3_cd_ripper:1.1:*:*:*:*:*:*:* |
cleanersoft | free_mp3_cd_ripper | 2.5 | cpe:2.3:a:cleanersoft:free_mp3_cd_ripper:2.5:*:*:*:*:*:*:* |
secunia.com/advisories/39193
www.exploit-db.com/exploits/11975
www.exploit-db.com/exploits/11976
www.exploit-db.com/exploits/17727
www.exploit-db.com/exploits/18142
www.osvdb.org/63349
www.securityfocus.com/bid/39672
www.exploit-db.com/exploits/36465/
www.exploit-db.com/exploits/36826/
www.exploit-db.com/exploits/36827/