CVE-2011-5171

Name of the Vulnerable Software and Affected Versions CyberLink Power2Go versions 7 (build 196) through 8 (build 1031)

Description The issue is related to multiple stack-based buffer overflows that allow remote attackers to execute arbitrary code. This is achieved via the src and name parameters in a p2g project file.

Recommendations For CyberLink Power2Go version 7 (build 196), update to a version that contains a fix for this issue. For CyberLink Power2Go version 8 (build 1031), update to a version that contains a fix for this issue. As a temporary workaround, consider restricting access to p2g project files to minimize the risk of exploitation.