Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2007-0018 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Convert MP3 Master

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer10 documents7 sources

Severity

9.3CRITICALNVD

EPSS

79.3%

top 0.92%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Altdo Convert MP3 Master Altdo MP3 Record AND Edit Audio Master Americanshareware MP3 WAV Converter +77 more

Timeline

PublishedJan 24

Latest updateMay 1

Description

Stack-based buffer overflow in the NCTAudioFile2.AudioFile ActiveX control (NCTAudioFile2.dll), as used by multiple products, allows remote attackers to execute arbitrary code via a long argument to the SetFormatLikeSample function. NOTE: the products include (1) NCTsoft NCTAudioStudio, NCTAudioEditor, and NCTDialogicVoice; (2) Magic Audio Recorder, Music Editor, and Audio Converter; (3) Aurora Media Workshop; DB Audio Mixer And Editor; (4) J. Hepple Products including Fx Audio Editor and others…

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages80 packages

▶NVDdandans_digital_media_products/easy_audio_editor7.4

▶NVDdandans_digital_media_products/full_audio_converter4.2

▶NVDnctsoft_products/nctaudioeditor2.7.1

▶NVDxrlly_software/arial_audio_converter2.3.40

▶NVDsmart_media_systems/power_audio_editor11.0.1

🔴Vulnerability Details

GHSA

GHSA-gwfv-7rcq-hxcc: Stack-based buffer overflow in the NCTAudioFile2↗2022-05-01

▶

VulnCheck

altdo convert_mp3_master Improper Restriction of Operations within the Bounds of a Memory Buffer↗2007

▶

💥Exploits & PoCs

Exploit-DB

NCTAudioFile2 2.x - ActiveX Control 'SetFormatLikeSample()' Remote Buffer Overflow (Metasploit)↗2010-07-03

▶

Exploit-DB

Microsoft Internet Explorer - NCTAudioFile2.AudioFile ActiveX Remote Stack Overflow (2)↗2007-04-27

▶

Exploit-DB

Microsoft Internet Explorer - NCTAudioFile2.AudioFile ActiveX Remote Overflow↗2007-04-13

▶

Metasploit

NCTAudioFile2 v2.x ActiveX Control SetFormatLikeSample() Buffer Overflow↗

▶

📋Vendor Advisories

Red Hat

security flaw↗2005-12-19

▶

💬Community

Bugzilla

CVE-2005-4348 security flaw↗2018-08-16

▶

Bugzilla

CVE-2006-5867 fetchmail not enforcing TLS for POP3 properly↗2007-01-09

▶