CVE-2019-25648

CVSS v3.1

6.2

Medium

Vector

AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions MyVideoConverter Pro version 3.14

Description The software contains a local buffer overflow issue that can lead to a denial of service. An attacker can exploit this by providing an excessively long string to the registration code input field. Specifically, pasting a malicious payload of approximately 10000 bytes into the 'Copy and Paste Registration Code' field triggers the condition. The vulnerable parameter is the registration code input field.

Recommendations Apply a fix for MyVideoConverter Pro version 3.14 to address the buffer overflow issue.

Exploit

Fix

DoS

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787

Related Identifiers

CVE-2019-25648

Affected Products

Myvideoconverter Pro

CVE-2019-25648

Weakness Enumeration

Related Identifiers

Affected Products

References · 5