ID de Prueba:	1.3.6.1.4.1.25623.1.0.900630
Categoría:	Buffer overflow
Título:	Xilisoft Video Converter Buffer Overflow Vulnerability
Resumen:	Xilisoft Video Converter is prone to a buffer overflow vulnerability.
Descripción:	Summary: Xilisoft Video Converter is prone to a buffer overflow vulnerability. Vulnerability Insight: The cause is due to an error in ape_plugin.plg when parsing malicious .CUE files containing overly long string. Vulnerability Impact: This issue can be exploited to corrupt the memory and to execute arbitrary code in the context of the affected application. Affected Software/OS: Xilisoft Video Converter version 3.x to 3.1.53.0704n and 5.x to 5.1.23.0402 on Windows. Solution: No known solution was made available for at least one year since the disclosure of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer release, disable respective features, remove the product or replace the product by another one. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2009-1370 BugTraq ID: 34472 http://www.securityfocus.com/bid/34472 https://www.exploit-db.com/exploits/8390 http://secunia.com/advisories/34660 XForce ISS Database: vcw-cue-bo(49807) https://exchange.xforce.ibmcloud.com/vulnerabilities/49807
Copyright	Copyright (C) 2009 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.