Description
AVS Audio Converter 9.1 contains a local buffer overflow vulnerability that allows local attackers to overwrite CPU registers by manipulating the 'Exit folder' input field. Attackers can craft a specially designed text file with 264 bytes of padding followed by register overwrite values to compromise the application and potentially execute arbitrary code.
Problem types
Product status
Credits
ZwX
References
www.exploit-db.com/exploits/47788 (ExploitDB-47788)
www.avs4you.com/ (Official Vendor Homepage)
www.vulncheck.com/...o-converter-exit-folder-buffer-overflow (VulnCheck Advisory: AVS Audio Converter 9.1 - 'Exit folder' Buffer Overflow)