What is CVE-2011-0500?

CVE-2011-0500 is a vulnerability in Verytools Videospirit_lite, classified under Improper Restriction of Operations within the Bounds of a Memory Buffer. Published 2011-01-20.

Is CVE-2011-0500 known to be exploited?

2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Buffer overflow in Verytools Videospirit_lite

CVE-2011-0500

Buffer overflow in VideoSpirit Pro 1.6.8.1, 1.68, and earlier; and VideoSpirit Lite 1.4.0.1 and possibly other versions; allows user-assisted remote attackers to execute arbitrary code via a VideoSpirit project (.visprj) file containing a…

Vulnerability class: Buffer Overflow

EPSS: 0.643 (98.5th percentile) — read the EPSS interpretation.

Affected products

Verytools Videospirit_lite — versions 1.4.0.1
Verytools Videospirit_pro — versions 1.6.8.1
N/a — versions n/a

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

Public proof-of-concept exploits

References

42876 (x_refsource_SECUNIA, third-party-advisory, Vendor Advisory)
42866 (x_refsource_SECUNIA, third-party-advisory, Vendor Advisory)
15936 (Exploit, exploit, x_refsource_EXPLOIT-DB)

Frequently asked questions

What is CVE-2011-0500?: CVE-2011-0500 is a vulnerability in Verytools Videospirit_lite, classified under Improper Restriction of Operations within the Bounds of a Memory Buffer. Published 2011-01-20.
Is CVE-2011-0500 known to be exploited?: 2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.