Buffer overflow in Mini-stream Rm-mp3_converter

CVE-2014-9448

Buffer overflow in Mini-stream RM-MP3 Converter 3.1.2.1.2010.03.30 allows remote attackers to execute arbitrary code or cause a denial of service (crash) via a long string in a WAX file.

Vulnerability class: Buffer Overflow

EPSS: 0.082 (92.4th percentile) — read the EPSS interpretation.

Affected products

Mini-stream Rm-mp3_converter — versions 3.1.2.1.2010.03.30
N/a — versions n/a

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

References

35377 (Exploit, exploit, x_refsource_EXPLOIT-DB)
35105 (Exploit, exploit, x_refsource_EXPLOIT-DB)
81080 (x_refsource_OSVDB, vdb-entry)