Felipe Winsnes

**Name of the Vulnerable Software and Affected Versions** 10-Strike Network Inventory Explorer version 8.54 **Description** The software contains a structured exception handler buffer overflow that allows for arbitrary code execution by overwriting SEH records. An attacker can trigger this by crafting a malicious payload targeting the `Computer` parameter during the `Add` function, leading to remote code execution. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Nidesoft DVD Ripper version 5.2.18 **Description** Nidesoft DVD Ripper 5.2.18 contains a local buffer overflow. An attacker can execute arbitrary code by crafting a malicious payload and pasting it into the License Code registration parameter. This triggers a stack-based buffer overflow, allowing the execution of shellcode. The vulnerable parameter is `License Code`. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** FTPDummy version 4.80 **Description** FTPDummy version 4.80 contains a local buffer overflow in how it handles preference files, potentially allowing an attacker to execute arbitrary code. An attacker can create a malicious preference file containing shellcode designed to overwrite a structured exception handler and execute system commands. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Quick Player version 1.3 **Description** The software contains a buffer overflow issue that allows for the execution of arbitrary code. This is achieved by creating a malicious `.m3l` file with a specifically designed payload. Attackers can trigger this by loading the crafted file through the application’s file loading mechanism, potentially leading to remote code execution. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Audio Playback Recorder version 3.2.2 **Description** Audio Playback Recorder 3.2.2 contains a local buffer overflow issue in the `eject` and `registration` parameters. This allows attackers to execute arbitrary code by crafting malicious payloads and overwriting the Structured Exception Handler (SEH) when pasting specially crafted input into the application’s input fields. A Structured Exception Handler (SEH) is a mechanism in Windows operating systems used to handle exceptions during program execution. Overwriting the SEH allows an attacker to redirect control flow to their own code, known as shellcode. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Nidesoft 3GP Video Converter versão 2.6.18 **Description** Ocorre um estouro de buffer de pilha local no parâmetro de registro de licença. Um invasor pode executar código arbitrário no sistema ao colar um payload malicioso no campo `License Code`. **Recommendations** No momento, não há informações sobre uma versão mais recente que contenha a correção para esta vulnerabilidade.