CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2009-1370

Stack-based buffer overflow in ape_plugin.plg in Xilisoft Video Converter 3.1.53.0704n and 5.1.23.0402 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long string in a .cue file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.049

EPSS Ranking 89.1%

CVSS Severity

CVSS v2 Score 9.3

References

http://secunia.com/advisories/34660
http://www.securityfocus.com/bid/34472
https://exchange.xforce.ibmcloud.com/vulnerabilities/49807
https://www.exploit-db.com/exploits/8390
http://secunia.com/advisories/34660
http://www.securityfocus.com/bid/34472
https://exchange.xforce.ibmcloud.com/vulnerabilities/49807
https://www.exploit-db.com/exploits/8390

Products affected by CVE-2009-1370

Xilisoft » Xilisoft Video Converter » Version: 3.1.53

cpe:2.3:a:xilisoft:xilisoft_video_converter:3.1.53
Xilisoft » Xilisoft Video Converter » Version: 5.1.23

cpe:2.3:a:xilisoft:xilisoft_video_converter:5.1.23

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2009-1370

Products

Pricing

Contact Us