Litexmedia Audio Conversion Wizard buffer overflow |

March 14, 2022

NAME

Litexmedia Audio Conversion Wizard buffer overflow

  • Platforms Affected:
    Litexmedia Audio Conversion Wizard 2.01
  • Risk Level:
    8.4
  • Exploitability:
    Proof of Concept
  • Consequences:
    Gain Access

DESCRIPTION

Litexmedia Audio Conversion Wizard is vulnerable to a buffer overflow, caused by improper bounds checking. By sending an overly long request, a local attacker could overflow a buffer and execute arbitrary code on the system.

CVSS 3.0 Information

  • Privileges Required: None
  • User Interaction: None
  • Scope: Unchanged
  • Access Vector: Local
  • Access Complexity: Low
  • Confidentiality Impact: High
  • Integrity Impact: High
  • Availability Impact: High
  • Remediation Level: Unavailable

MITIGATION

No remedy available as of March 9, 2022.

  • Reference Link:
    https://packetstormsecurity.com/files/166245
  • Reference Link:
    https://www.exploit-db.com/exploits/50811

If you like the site, please consider joining the telegram channel and supporting us on Patreon using the button below.

Digital Patreon Wordmark FieryCoralv2

You may have missed

hackerone

HackerOne Bug Bounty Disclosure: unsubscribe-anyone-from-all-emails-abfe

November 25, 2024
hackerone

HackerOne Bug Bounty Disclosure: information-exposure-due-to-enabled-debug-mode-thpless

November 25, 2024
hackerone

HackerOne Bug Bounty Disclosure: reflected-html-injection-via-contact-faq-search-parameter-on-the-white-evil

November 25, 2024
hackerone

HackerOne Bug Bounty Disclosure: reflected-html-injection-via-contact-faq-search-parameter-on-the-white-evil

November 25, 2024
CISA Logo

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

November 25, 2024