Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Tomabo MP4 Converter 3.25.22 Denial of Service via Name Field
Vulnerability Description
Tomabo MP4 Converter 3.25.22 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long string in the Name field. Attackers can trigger a buffer overflow by pasting a large payload into the Name parameter when adding a preset in the Video/Audio Formats options, causing the application to crash when Reset All is clicked.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Vulnerability Type
跨界内存写
Vulnerability Title
Tomabo MP4 Converter 缓冲区错误漏洞
Vulnerability Description
Tomabo MP4 Converter是Tomabo公司的一款视频格式转换工具。 Tomabo MP4 Converter 3.25.22版本存在缓冲区错误漏洞,该漏洞源于名字段输入过长字符串,可能导致本地攻击者通过添加预设时在名字段输入过大有效载荷,并在点击全部重置时触发缓冲区溢出使应用程序崩溃,造成拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A