1 Click Audio Software 2.3.6 (Video) - 2x ActiveX Buffer Overflow Vulnerabilities | Vulnerability Magazine - Acknoweldgements, Bug Bounties & Security Research

1 Click Audio Software 2.3.6 (Video) - 2x ActiveX Buffer Overflow Vulnerabilities

Today the independent researcher metacom disclosed two issues in the dvdtools software 1click audio v2.3.6. The security vulnerability is located in the COM component in the SkinCrafter.dll. The independent security researcher demonstrates in two videos how to exploit the bug via activex component.

The security risk of the buffer overflow vulnerability is estimated as high with a cvss (common vulnerability scoring system) count of 6.1. Exploitation of the vulnerability requires a low privilege system user account and no user interaction. Successful exploitation of the vulnerability results in system compromise by elevation of privileges via overwrite of the registers.

1 Click Audio Converter - Activex Buffer Overflow Vulnerability

Advisory: http://www.vulnerability-lab.com/get_content.php?id=1507

1 Click Extract Audio - Activex Buffer Overflow Vulnerability

Advisory: http://www.vulnerability-lab.com/get_content.php?id=1508

Rate this article:

1 Click Audio Software 2.3.6 (Video) - 2x ActiveX Buffer Overflow Vulnerabilities

1 Click Audio Software 2.3.6 (Video) - 2x ActiveX Buffer Overflow Vulnerabilities

1 Click Audio Converter - Activex Buffer Overflow Vulnerability

1 Click Extract Audio - Activex Buffer Overflow Vulnerability

Add new comment

Plain text

Today's Most Popular

Apple iOS 7.0.1 & 7.0.2 - Sim Lock Screen Display Bypass

Stack Buffer Overflow Zero Day Vulnerability uncovered in Microsoft Skype v7.2, v7.35 & v7.36

FlashFXP Software Client – Buffer Overflow Vulnerability

Google Youtube - Persistent Cross Site Vulnerability (Demonstration Video)

All Time Most Popular

Whitehat Hacker discovered details of an application-side Facebook Studio Dashboard Vulnerability

PayPal Inc fixed Filter Bypass & Profile Code Execution during Infrastructure Upgrades

Facebook Security - 12.500$ Bug Bounty reward to Security Researcher

Wickr Inc - When honesty disappears behind the VCP Mountain

Most Commented Articles

Advanced Persistent Threat Golden_hands - Digital Bank Robbery of the Year 2020

Facebook Security - 12.500$ Bug Bounty reward to Security Researcher

Bug Bounty Program Award Winners 2014 - Exclusive Interview by Microsoft & PayPal

Shopify | Buy Button | Persistent Embed POST Inject Vulnerability

Top Rated Articles

Manchester City - Football Club hosts first Hackathon in July 2016

PayPal Inc Bug Bounty - JDWP Remote Code Execution Vulnerability

Barracuda Networks Bug Bounty Program - Message Archiver 650 v3.2 Persistent Vulnerability BNSEC:703

US Military starts official "Hack the Army" Bug Bounty Program

Recent comments

Syndicate

Advertisement

Recent Posts & Articles

Citrix Gateway & Cloud MFA - Insufficient Session Validation Vulnerability

Rhein Ruhr Express (RRX) - DNS Cache Snooping Vulnerability on Wifi Hotspot

Bundeswehr Generalmajor officially acknowledges Whitehat for Responsible Disclosure Activities

Last Viewed Articles & Posts

PayPal Inc Increases Bug Bounty Payments in 2018 up to 30.000$

ZTE ZXV10 W300 v3.1.0c_DR0 - Remote Session Delete Vulnerability

Egyptian Workshop - Bug Bounty & Security Research

RSS Feeds & Services

Projects & Sites

Search form

You are here

1 Click Audio Software 2.3.6 (Video) - 2x ActiveX Buffer Overflow Vulnerabilities

1 Click Audio Software 2.3.6 (Video) - 2x ActiveX Buffer Overflow Vulnerabilities

1 Click Audio Converter - Activex Buffer Overflow Vulnerability

1 Click Extract Audio - Activex Buffer Overflow Vulnerability

Add new comment

Plain text

Search form

Today's Most Popular

All Time Most Popular

Most Commented Articles

Top Rated Articles

Recent comments

Syndicate

Advertisement

Recent Posts & Articles

Last Viewed Articles & Posts

RSS Feeds & Services

Projects & Sites