River Past Ringtone Converter 2.7.6.1601 Buffer Overflow DoS

River Past Ringtone Converter 2.7.6.1601 contains a local buffer overflow vulnerability that allows attackers to crash the application by supplying oversized input to activation fields. Attackers can paste 300 bytes of data into the Email textbox and Activation code textarea via the Help menu's Activate dialog to trigger a denial of service condition.

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

跨界内存写

River Past Ringtone Converter 缓冲区错误漏洞

River Past Ringtone Converter是River Past公司的一款音频转换工具。 River Past Ringtone Converter 2.7.6.1601版本存在缓冲区错误漏洞，该漏洞源于激活字段存在本地缓冲区溢出，可能导致攻击者通过提供超长输入使应用程序崩溃，造成拒绝服务。

N/A

N/A