CVE-2007-0018
Stack-based buffer overflow in the NCTAudioFile2.AudioFile ActiveX control (NCTAudioFile2.dll), as used by multiple products, allows remote attackers to execute arbitrary code via a long argument to the SetFormatLikeSample function. NOTE: the products include (1) NCTsoft NCTAudioStudio, NCTAudioEditor, and NCTDialogicVoice; (2) Magic Audio Recorder, Music Editor, and Audio Converter; (3) Aurora Media Workshop; DB Audio Mixer And Editor; (4) J. Hepple Products including Fx Audio Editor and others; (5) EXPStudio Audio Editor; (6) iMesh; (7) Quikscribe; (8) RMBSoft AudioConvert and SoundEdit Pro 2.1; (9) CDBurnerXP; (10) Code-it Software Wave MP3 Editor and aBasic Editor; (11) Movavi VideoMessage, DVD to iPod, and others; (12) SoftDiv Software Dexster, iVideoMAX, and others; (13) Sienzo Digital Music Mentor (DMM); (14) MP3 Normalizer; (15) Roemer Software FREE and Easy Hi-Q Recorder, and Easy Hi-Q Converter; (16) Audio Edit Magic; (17) Joshua Video and Audio Converter; (18) Virtual CD; (19) Cheetah CD and DVD Burner; (20) Mystik Media AudioEdit Deluxe, Blaze Media, and others; (21) Power Audio Editor; (22) DanDans Digital Media Full Audio Converter, Music Editing Master, and others; (23) Xrlly Software Text to Speech Makerand Arial Sound Recorder / Audio Converter; (24) Absolute Sound Recorder, Video to Audio Converter, and MP3 Splitter; (25) Easy Ringtone Maker; (26) RecordNRip; (27) McFunSoft iPod Audio Studio, Audio Recorder for Free, and others; (28) MP3 WAV Converter; (29) BearShare 6.0.2.26789; and (30) Oracle Siebel SimBuilder and CRM 7.x.
EPSS 73.81% · 98.8th percentile
Risk Scores
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| roemer_software | easy_hi-q_recorder | 2.0 |
| movavi | chiliburner | 2.3 |
| j_hepple_products | fx_audio_tools | 7.3.4 |
| roemer_software | free_hi-q_recorder | 1.9 |
| softdiv_softare | dexster | 3.0 |
| mcfunsoft | audio_recorder_for_free | 6.1 |
| mcfunsoft | audio_studio | * |
| xrlly_software | text_to_speech_maker | 1.3.8 |
| imesh.com | imesh | 7.0.2.26789 |
| rmbsoft | audioconvert | 3.1.0.125 |
| iaudiosoft.com | absolute_video_to_audio_converter | 2.7.9 |
| audio_edit_magic | audio_edit_magic | * |
| dandans_digital_media_products | easy_audio_editor | 7.4 |
| j_hepple_products | fx_magic_music | 5.7.7 |
| nextlevel_systems | audio_editor_gold | * |
| xwaver.com | magic_audio_editor_pro | 10.3.1_build_476 |
| xrlly_software | arial_sound_recorder | 1.4.3 |
| code-it_softare | abasic_editor | 10.1 |
| expstudio | audio_editor | 4.0.2 |
| j_hepple_products | fx_movie_splitter | 6.4.7 |
…and 62 more
Timeline
- Jan 24, 2007 CVE Published
- Jul 30, 2010 PoC Published
- May 29, 2018 PoC Published
- Feb 4, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
References
- http://secunia.com/advisories/23568 advisory
- http://secunia.com/advisories/23745 technical
- http://secunia.com/advisories/23753 technical
- 23546 third-party-advisory
- 23892 vdb
- http://secunia.com/secunia_research/2007-7/advisory/ url
- 23535 third-party-advisory
- nctaudiofile2-multiple-bo(31707) vdb
- http://secunia.com/secunia_research/2007-12/advisory/ url
- 23562 third-party-advisory
- http://secunia.com/secunia_research/2007-27/advisory/ url
- 23536 third-party-advisory
- 30459 third-party-advisory
- 30406 third-party-advisory
- http://secunia.com/secunia_research/2007-29/advisory/ url
- http://secunia.com/secunia_research/2007-24/advisory/ url
- http://secunia.com/secunia_research/2007-8/advisory/ url
- http://secunia.com/secunia_research/2007-9/advisory/ url
- http://secunia.com/secunia_research/2007-13/advisory/ url
- http://secunia.com/secunia_research/2007-20/advisory/ url
…and 104 more