Test ID:	1.3.6.1.4.1.25623.1.0.900630
Category:	Buffer overflow
Title:	Xilisoft Video Converter Buffer Overflow Vulnerability
Summary:	Check for the version of Xilisoft Video Converter
Description:	Overview: This host is with installed Xilisoft Video Converter and is prone to Buffer Overflow Vulnerability. Vulnerability Insight: The cause is due to an error in ape_plugin.plg when parsing malicious .CUE files containing overly long string. Impact: This issue can be exploited to corrupt the memory and to execute arbitrary code in the context of the affected application. Impact Level: Application Affected Software/OS: Xilisoft Video Converter version 3.x to 3.1.53.0704n and 5.x to 5.1.23.0402 on Windows. Fix: No solution or patch is available as of 27th April, 2009. Information regarding this issue will be updated once the solution details are available. For updates refer to http://www.xilisoft.com/ References: http://secunia.com/advisories/34660 http://www.milw0rm.com/exploits/8452 http://xforce.iss.net/xforce/xfdb/49807
Cross-Ref:	BugTraq ID: 34472 Common Vulnerability Exposure (CVE) ID: CVE-2009-1370 http://www.milw0rm.com/exploits/8390 http://www.securityfocus.com/bid/34472 http://secunia.com/advisories/34660 XForce ISS Database: vcw-cue-bo(49807) http://xforce.iss.net/xforce/xfdb/49807
Copyright	Copyright (C) 2009 SecPod

This is only one of 32582 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.

New User Registration Email: UserID: Passwd: Please email me your monthly newsletters, informing the latest services, improvements & surveys. Please email me a vulnerability test announcement whenever a new test is added.     Privacy

Registered User Login   UserID:     Passwd:     Forgot userid or passwd? Email/Userid: