CVE-2008-0959
Last modified
CVE-2008-0959 is a vulnerability of currently unknown severity. Multiple stack-based buffer overflows in the Online Media Technologies NCTSoft NCTAudioInformation2 ActiveX control in NCTAudioInformation2.dll, as used in (1) Power Audio CD Grabber 1.0, (2) Power Audio CD Burner 1.02, (3) CinematicMP3 1.4.0.0, (4) Alive MP3 WAV Converter 3.9.3.2, and possibly other products, allow remote attackers to execute arbitrary code via unspecified vectors.. EPSS estimates a 5.97% chance of exploitation in the next 30 days.
Description
Multiple stack-based buffer overflows in the Online Media Technologies NCTSoft NCTAudioInformation2 ActiveX control in NCTAudioInformation2.dll, as used in (1) Power Audio CD Grabber 1.0, (2) Power Audio CD Burner 1.02, (3) CinematicMP3 1.4.0.0, (4) Alive MP3 WAV Converter 3.9.3.2, and possibly other products, allow remote attackers to execute arbitrary code via unspecified vectors.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Alivemedia | Alive Mp3 Wav Converter | 3.9.3.2 |
| Online Media Technologies | Nctaudioeditor Activex Control | All versions |
| Online Media Technologies | Nctaudiostudio Activex Control | All versions |
| Orion Studios | Cinematicmp3 | 1.4.0.0 |
| Ussun | Power Audio Cd Burner | 1.02 |
| Ussun | Power Audio Cd Grabber | 1.0 |
References
- http://secunia.com/advisories/30415Vendor Advisory
- http://www.kb.cert.org/vuls/id/669265US Government Resource
- http://secunia.com/advisories/30415Vendor Advisory
- http://www.kb.cert.org/vuls/id/669265US Government Resource
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2008-0959?
How severe is CVE-2008-0959?
How do I fix CVE-2008-0959?
Are you affected by CVE-2008-0959?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST