WMV to AVI MPEG DVD WMV Convertor 4.6.1217 - Buffer OverFlow | Advisories

Advisories

WMV to AVI MPEG DVD WMV Convertor 4.6.1217 - Buffer OverFlow

severity: critical
date: 2/18/2026
Affecting: WMV to AVI MPEG DVD WMV Convertor <= 4.6.1217
CVE: CVE-2019-25362
CWE: CWE-787 Out-of-bounds Write
CVSS: 9.3
CVSS V4 Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
References: ExploitDB-47568
Vendor Homepage
Software Download Page
Exploit Database Entry 47563
Credit: Doan Nguyen (4ll4u)
Description: WMV to AVI MPEG DVD WMV Convertor 4.6.1217 contains a buffer overflow vulnerability that allows attackers to execute arbitrary code by overwriting the license name and license code fields. Attackers can craft a malicious payload of 6000 bytes to trigger a bind shell on port 4444 by exploiting a stack-based buffer overflow in the application's input handling.

Ready to get Started?

Explore VulnCheck, a next-generation Cyber Threat Intelligence platform, which provides exploit and vulnerability intelligence to help you prioritize and remediate vulnerabilities that matter.

Vulnerability Prioritization
Prioritize vulnerabilities that matter based on the threat landscape and defer vulnerabilities that don't.
Early Warning System
Real-time alerting of changes in the vulnerability landscape so that you can take action before the attacks start.

Schedule a Demo