NCH Software Express Burn Plus 4.68 EBP Project File Handling Buffer Overflow PoC

The vulnerability is caused due to a boundary error in the processing of a project file, which can be exploited to cause a unicode buffer overflow when a user opens e.g. a specially crafted .EBP file. Successful exploitation could allow execution of arbitrary code on the affected machine.

eburn2bof

eburn2bof2

Advisory: http://www.zeroscience.mk/en/vulnerabilities/ZSL-2014-5166.php

Ref: http://www.zeroscience.mk/en/vulnerabilities/ZSL-2012-5103.php

Comment are closed.