CVE-2019-25362

WMV to AVI MPEG DVD WMV Convertor 4.6.1217 - Buffer OverFlow

Description

WMV to AVI MPEG DVD WMV Convertor 4.6.1217 contains a buffer overflow vulnerability that allows attackers to execute arbitrary code by overwriting the license name and license code fields. Attackers can craft a malicious payload of 6000 bytes to trigger a bind shell on port 4444 by exploiting a stack-based buffer overflow in the application's input handling.

INFO

Published Date :

2026-02-18T21:55:08.448Z

Last Modified :

2026-02-19T20:09:18.092Z

Source :

VulnCheck

AFFECTED PRODUCTS

The following products are affected by CVE-2019-25362 vulnerability.

Vendors	Products
Allok Soft	Wmv To Avi Mpeg Dvd Wmv Convertor
Alloksoft	Wmv To Avi Mpeg Dvd Wmv Convertor

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2019-25362.

URL	Resource
https://www.alloksoft.com/
https://www.alloksoft.com/wmv.htm
https://www.exploit-db.com/exploits/47563
https://www.exploit-db.com/exploits/47568
https://www.vulncheck.com/advisories/wmv-to-avi-mpeg-dvd-wmv-convertor-buffer-overflow

CVSS Vulnerability Scoring System

V4
V3.1

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Attack Requirements

Privileges Required

User Interaction

VS Confidentiality

VS Integrity

VS Availability

SS Confidentiality

SS Integrity

SS Availability

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact