1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. Attack: Free MP3 CD Ripper Buffer Overflow 2

Attack: Free MP3 CD Ripper Buffer Overflow 2

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects an attempt to exploit a buffer overflow vulnerability in Free MP3 CD Ripper application which may result in remote code execution.

Additional Information

Free MP3 CD Ripper is a multimedia player available for Microsoft Windows.

Free MP3 CD Ripper is prone to a buffer-overflow vulnerability because it fails to perform adequate checks on user-supplied input. Specifically, this issue occurs when processing a '.wav' audio file through the 'wav to mp3' function.

Attackers may leverage this issue to execute arbitrary code in the context of the application. Failed attacks will cause denial-of-service conditions.

Affected

  • Free MP3 CD Ripper 2.6
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube