Vulnerabilities > CVE-2007-2568 - Buffer Overflow vulnerability in Vcdgear 3.55

CVSS 9.3 - CRITICAL

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

network

vcdgear

critical

exploit available

NVD

Published: 2007-05-16

Updated: 2017-07-29

Summary

Multiple stack-based buffer overflows in VCDGear 3.55 allow user-assisted remote attackers to execute arbitrary code via a long (1) tag or (2) track type in a CUE file.

Vulnerable Configurations

Part	Description	Count
Application	Vcdgear Vcdgear Vcdgear 3.55	1

Exploit-Db

description	VCDGear 3.50 - (.cue) Stack Buffer Overflow Exploit. CVE-2007-2568. Local exploit for windows platform
id	EDB-ID:31991
last seen	2016-02-03
modified	2014-02-28
published	2014-02-28
reporter	Provensec
source	https://www.exploit-db.com/download/31991/
title	VCDGear 3.50 - .cue Stack Buffer Overflow Exploit

References

http://osvdb.org/36178
http://secunia.com/advisories/25117
http://secunia.com/secunia_research/2007-51/advisory/
http://www.securityfocus.com/bid/24003
http://www.vupen.com/english/advisories/2007/1835
https://exchange.xforce.ibmcloud.com/vulnerabilities/34317