Multiple vendor NCTAudioFile2 ActiveX control buffer overflow

nctaudiofile2-activex-bo (31707) The risk level is classified as HighHigh Risk

Description:

Multiple vendor products that use the NCTAudioFile2 ActiveX control are vulnerable to a stack-based buffer overflow, caused by improper bounds checking by the SetFormatLikeSample() method. By persuading a victim to visit a malicious Web page that passes an overly long string to the SetFormatLikeSample() method, a remote attacker could overflow a buffer and execute arbitrary code on the system or cause the victim's browser to crash.

Platforms Affected:

  • Absolute, Absolute MP3 Splitter 2.5.4
  • Absolute, Absolute Sound Recorder 3.4.5
  • Absolute, Absolute Video to Audio Converter 2.7.9
  • Akram Software, Akram Audio Converter 5.0
  • Akram Software, Akram Audio Editor 2.2
  • Akram Software, Akram Media Creator 1.11
  • ALO, ALO Audio Editor 3.2
  • ALO, ALO RM MP3 Cutter 1.0
  • ALO, ALO RM to MP3 Converter 7.0
  • Altdo, Altdo Convert Mp3 Master 1.1
  • Altdo, Altdo Mp3 Record&Edit Audio Master 1.2
  • American Shareware, MP3 WAV Converter 3.18
  • Audio Tools Factory, Vista MP3 Recorder 1.00
  • AudioEditMagic Soft, Audio Edit Magic 9.2.3 Build 389
  • AudioEditMagic Soft, Audio Edit Magic 9.2.6 Build 512
  • Audiotool.net, Ease MP3 Recorder 1.50
  • Aurora Software, Aurora Media Workshop 3.3.25
  • Cheetah Websites Corporation, Cheetah CD Burner 3.56
  • Cheetah Websites Corporation, Cheetah DVD Burner 1.79
  • Code-it Software, aBasic Editor 10.1
  • Code-it Software, Wave MP3 Editor 10.1
  • Color7 Technology, Music Fan's Factory 9.2.23.3
  • Color7 Technology, Power Music Editor 7.4.0.10
  • ColorfulSoft, Colorful Audio Recorder 2.0
  • ColorfulSoft, Colorful Music Editor 2.0
  • Cool Audio, Magic Audio Editor Pro 10.3.1 Build 476
  • Cool Audio, Magic Music Studio Pro 7.0.2.1 Build 500
  • CoolRecordEdit, Cool Record Edit Deluxe 5.9.5
  • DanDans, Easy Audio Editor 7.4
  • DanDans, Full Audio Converter 4.2
  • DanDans, Music Editing Master 5.2
  • DanDans, Visual Video Converter 4.4
  • Digital Borneo, DB Audio Mixer And Editor 1.1.0
  • Digital Smart Software, Audio Convert Master 7.4.0.10
  • Digital Smart Software, Digital Audio CD Burner 7.4.0.10
  • Digital Smart Software, Digital Audio Editor 7.4.0.10
  • Digital Smart Software, Digital Music Record Convert Burn Station 7.4.3.15
  • Digital Smart Software, Digital Music Studio 8.0.4.1
  • Easy Ringtone Maker, Easy Ringtone Maker 2.0.5
  • EXPStudio, EXPStudio Audio Editor 4.0.2
  • EXPStudio, EXPStudio Audio Editor 4.0.3
  • Focus Systems, Focus All CD DVD Burner 2.1.0.1
  • Focus Systems, Focus Audio Converter 2.1.0.1
  • Focus Systems, Focus MP3 Recorder Pro 3.4
  • Focus Systems, Focus MP3 Recorder Splitter 3.4
  • Free Peers, BearShare 6.0.2.26789
  • GooDVDSof, Goo DVD to Video Converter 1.00
  • GooDVDSoft, Easy DVD Converter 1.00
  • GooDVDSoft, Goo DVD to Audio Converter 1.00
  • GooDVDSoft, Goo DVD to MP3 Converter 1.00
  • GooDVDSoft, Goo DVD to MPEG Converter 1.00
  • GooDVDSoft, Goo DVD to OGG Converter 1.00
  • GooDVDSoft, Goo DVD to RM Converter 1.00
  • GooDVDSoft, Goo DVD to WAV Converter 1.00
  • GooDVDSoft, Goo DVD to WMA Converter 1.00
  • GooDVDSoft, Goo DVD to WMV Converter 1.00
  • H+H Software, Virtual CD 6.0.0.7
  • H+H Software, Virtual CD 7.1.0.2
  • H+H Software, Virtual CD 8.0.0.6
  • H+H Software, Virtual CD File Server 7.1.0.3
  • HiFi Software, HiFi CD to MP3 RM Ripper 1.70
  • HiFi Software, HiFi MP3 Audio Recorder Joiner 3.00
  • HiFi Software, HiFi MP3 Audio Splitter Joiner 3.00
  • HiFi Software, HiFi MP3 Recorder Joiner 2.00
  • HiFi Software, HiFi MP3 WMA Cutter 2.00
  • HiFi Software, HiFi OGG Splitter Joiner 3.00
  • HiFi Software, HiFi RM Audio Converter 2.70
  • HiFi Software, HiFi RM MP3 Converter 2.00
  • HiFi Software, HiFi RM OCG Converter 2.00
  • HiFi Software, HiFi RM WAV Converter 2.00
  • HiFi Software, HiFi RM WMA Converter 2.00
  • HiFi Software, HiFi Video to Audio Cutter 2.00
  • HiFi Software, HiFi WAV Splitter Joiner 3.00
  • HiFi Software, HiFi WMA Recorder Joiner 2.00
  • HiFi Software, HiFi WMA Splitter Joiner 3.00
  • iMesh, iMesh 7.0.2.26789
  • J Hepple, Fx Audio ConCat 1.2.0 Beta
  • J Hepple, FX Audio Editor 4.7.11
  • J Hepple, Fx Audio Tools 7.3.4
  • J Hepple, Fx Magic Music 5.7.7
  • J Hepple, Fx Movie Joiner 6.2.8
  • J Hepple, Fx Movie Joiner and Splitter 6.2.8
  • J Hepple, Fx Movie Splitter 6.4.7
  • J Hepple, Fx New Sound 5.1.1
  • J Hepple, Fx Video Converter 7.51.21
  • Joshua Software, Audio Convertor Plus 2.2
  • Joshua Software, Video Converter Plus 3.01
  • Magic, Magic Rm AVI Mpeg to MP3 Converter & Editor 2.0
  • Magic Video Software, Magic Audio Converter 8.2.6 b719
  • Magic Video Software, Magic Audio Recorder 5.3.7
  • Magic Video Software, Magic Music Editor 5.2.2
  • McFunSoft, McFunSoft Audio Editor 6.3.3 Build 489
  • McFunSoft, McFunSoft Audio Recorder for Free 6.1
  • McFunSoft, McFunSoft Audio Studio 6.6.3 Build 479
  • McFunSoft, McFunSoft iPod Audio Studio 6.2.4
  • McFunSoft, McFunSoft iPod Music Converter 5.1
  • McFunSoft, McFunSoft Recording to iPod Solution 5.1
  • MightSOFT, Audio Editor Pro 2.80
  • MightSOFT, Audio Editor Pro 2.91
  • MightSOFT, EZ Audio Server 2.0
  • Movavi, Movavi ChiliBurner 2.3
  • Movavi, Movavi ConvertMovie 4.4
  • Movavi, Movavi DVD to iPod 1.0
  • Movavi, Movavi SplitMovie 1.4
  • Movavi, Movavi Suite 3.5
  • Movavi, Movavi VideoMessage 1.0
  • mp3-soft, MP3 Normalizer 1.03
  • Mystik Media, AudioEdit Deluxe 4.10
  • Mystik Media, Blaze Media Pro 7.0
  • Mystik Media, Blaze MediaConvert 3.4
  • Mystik Media, ContextConvert Pro 3.1
  • NCTsoft, NCTAudioEditor 2.7.1
  • NCTsoft, NCTAudioFile2 ActiveX Control
  • NCTsoft, NCTAudioStudio 2.7.1
  • NCTsoft, NCTDialogicVoice 2.7.1
  • NextLevel Software, Audio Editor Gold 9.2.5 Build 424
  • NextLevel Software, Audio Studio Gold 7.0.1.1 Build 500
  • Oracle, Siebel SimBuilder 7.8.5 build 2635
  • Quikscribe, Quikscribe Player 5.022.05
  • Quikscribe, Quikscribe Recorder 5.021.29
  • recordnrip.com, RecordNRip 1.0
  • RMBSOFT, AudioConvert 3.1.0.125
  • RMBSOFT, SoundEdit Pro 2.1
  • RockN Audio, RockN Audio 4.1
  • Roemer Software, Easy Hi-Q Converter 1.7
  • Roemer Software, Easy Hi-Q Recorder 2.0
  • Roemer Software, FREE Hi-Q Recorder 1.9
  • Sienzo, Sienzo Digital Music Mentor 2.6.0.3
  • SmartMedia Systems, Power Audio Editor 11.0.1
  • Softdiv Software, Dexster 3.0
  • Softdiv Software, iVideoMAX 3.9
  • Softdiv Software, MP3 to WAV Converter 3.0
  • Softdiv Software, Snosh 1.4
  • Softdiv Software, VIDEOzilla 2.5
  • Stefan Haglund, Fredrik Haglund, Florian Schmitz, CDBurnerXP Pro 3.0.116
  • Xrlly Software, Arial Audio Converter 2.3.40
  • Xrlly Software, Arial Sound Recorder 1.4.3
  • Xrlly Software, Text to Speech Maker 1.3.8

Remedy:

Upgrade to the latest version of Sienzo Digital Music Mentor (2.6.0.4 or later), available from the Sienzo Digital Music Mentor Web site. See References.

For other distributions:
Apply the appropriate update for your system. See References.

Consequences:

Gain Access

References:

  • A-one Web site, Convert split join your video files at http://www.aone-soft.com/.
  • Hit-recorder Web site, Hit-Recorder 2 - forget file-sharing at http://www.hitrecorder.com/frameset.htm.
  • Oracle Web site, Oracle at http://www.oracle.com.
  • Playto Web site, Plato DVD Ripper , DVD Copy , DVD to iPod Software at http://www.dvdtompegx.com/.
  • Secunia Research 09/05/2007, BearShare NCTAudioFile2 ActiveX Control Buffer Overflow at http://secunia.com/secunia_research/2007-50/advisory/.
  • Sienzo Digital Music Mentor Web site, Sienzo - Digital Music Mentor, Guitar chords and bass tabs software for You at http://www.sienzo.com/download.asp.
  • TEC Software Web site, TEC Sound Recorder 1.0 at http://www.tec-software.biz/SoundRecorder.htm.
  • BID-22196: NCTsoft NCTAudioFile2 ActiveX Control Remote Buffer Overflow Vulnerability
  • BID-23892: RETIRED: Musiclab BearShare NCTAudioFile2 ActiveX Control Buffer Overflow Vulnerability
  • CVE-2007-0018: ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
  • FrSIRT/ADV-2007-0310: NCTsoft Products NCTAudioFile2 ActiveX Control Remote Buffer Overflow Vulnerability
  • SA22922: BearShare NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23475: NCTsoft Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23485: Magic Video Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23493: Aurora Media Workshop NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23495: DB Audio Mixer And Editor NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23511: J. Hepple Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23516: EXPStudio Audio Editor NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23530: iMesh NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23532: Quikscribe Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23534: R.M. de Boer Software NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23535: CDBurnerXP Pro NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23536: Code-it Software Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23541: Movavi Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23542: SoftDiv Software Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23543: Sienzo Digital Music Mentor NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23544: MP3 Normalizer NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23546: Roemer Software Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23548: Audio Edit Magic NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23550: Joshua Software Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23551: Virtual CD Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23552: Cheetah CD/DVD Burner NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23553: Mystik Media Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23554: Power Audio Editor NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23557: DanDans Digital Media Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23558: Xrlly Software NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23560: Absolute Software Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23561: Easy Ringtone Maker NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23562: RecordNRip NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23565: McFunSoft Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23568: MP3 WAV Converter NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23745: NextLevel Systems Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23753: Altdo Software Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23795: Cool Audio Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA25993: TEC Sound Recorder NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA26046: Hit-Recorder NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA26100: A-one Software Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA26101: Plato Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA28407: Oracle Siebel SimBuilder NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA30406: RockN Audio NCTSoft ActiveX Controls Buffer Overflow Vulnerabilities
  • SA30424: Focus Systems Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA30439: audiotoolsfactory.com Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA30447: HiFi Software Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA30450: Digital Smart Software Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA30459: Color7 Technology Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA30506: Cool Record Edit NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA30508: ALO Software Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA30509: ColorfulSoft Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA30510: Akram Software Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA30511: goodvdsoft.com Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA30528: MightSOFT Products NCTSoft ActiveX Controls Buffer Overflow Vulnerabilities
  • SA30530: Ease MP3 Recorder NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA30533: Magic Rm AVI Mpeg to MP3 Converter & Editor NCTSoft ActiveX Controls Buffer Overflows
  • US-CERT VU#292713: Online Media Technologies NCTsoft NCTAudioFile2 ActiveX buffer overflow

Reported:

Jan 24, 2007

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

Copyright (c) 1994-2008 Internet Security Systems, Inc. All rights reserved worldwide.

For corrections or additions please email xforce@iss.net

Return to the main page