Buffer Overflow in VideoSpirit Pro and VideoSpirit Lite Allows Arbitrary Code Execution

Buffer Overflow in VideoSpirit Pro and VideoSpirit Lite Allows Arbitrary Code Execution

CVE-2011-0500 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

Buffer overflow in VideoSpirit Pro 1.6.8.1, 1.68, and earlier; and VideoSpirit Lite 1.4.0.1 and possibly other versions; allows user-assisted remote attackers to execute arbitrary code via a VideoSpirit project (.visprj) file containing a valitem element with a long "value" attribute, as demonstrated using a valitem with the mp3 name.

Learn more about our User Device Pen Test.