[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

248149

 
 

909

 
 

194803

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2008-0959Date: (C)2008-05-29   (M)2023-12-22


Multiple stack-based buffer overflows in the Online Media Technologies NCTSoft NCTAudioInformation2 ActiveX control in NCTAudioInformation2.dll, as used in (1) Power Audio CD Grabber 1.0, (2) Power Audio CD Burner 1.02, (3) CinematicMP3 1.4.0.0, (4) Alive MP3 WAV Converter 3.9.3.2, and possibly other products, allow remote attackers to execute arbitrary code via unspecified vectors.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 6.8
Exploit Score: 8.6
Impact Score: 6.4
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality: PARTIAL
Integrity: PARTIAL
Availability: PARTIAL
  
Reference:
SECUNIA-30395
SECUNIA-30415
SECUNIA-30418
SECUNIA-30419
SECUNIA-30421
SECUNIA-30445
SECUNIA-30451
SECUNIA-30452
SECUNIA-30453
SECUNIA-30454
SECUNIA-30456
SECUNIA-30457
SECUNIA-30458
ADV-2008-1669
VU#669265
nctaudiostudio-nctaudioinformation2-bo(42680)

CWE    1
CWE-119

© SecPod Technologies