Multiple vendor NCTAudioFile2 ActiveX control buffer overflow

nctaudiofile2-activex-bo (31707) The risk level is classified as HighHigh Risk

Description:

Multiple vendor products that use the NCTAudioFile2 ActiveX control are vulnerable to a stack-based buffer overflow, caused by improper bounds checking by the SetFormatLikeSample() method. By persuading a victim to visit a malicious Web page that passes an overly long string to the SetFormatLikeSample() method, a remote attacker could overflow a buffer and execute arbitrary code on the system or cause the victim's browser to crash.

*CVSS:

Base Score: 8
  Access Vector: Remote
  Access Complexity: High
  Authentication: Not Required
  Confidentiality Impact: Complete
  Integrity Impact: Complete
  Availability Impact: Complete
 
Temporal Score: 6.5
  Exploitability: Unproven
  Remediation Level: Unavailable
  Report Confidence: Uncorroborated

Consequences:

Gain Access

Remedy:

Upgrade to the latest version of Sienzo Digital Music Mentor (2.6.0.4 or later), available from the Sienzo Digital Music Mentor Web site. See References.

For other distributions:
Apply the appropriate update for your system. See References.

References:

  • A-one Web site: Convert split join your video files.
  • Hit-recorder Web site: Hit-Recorder 2 - forget file-sharing.
  • Oracle Web site: Oracle.
  • Playto Web site: Plato DVD Ripper , DVD Copy , DVD to iPod Software.
  • Secunia Research 09/05/2007: BearShare NCTAudioFile2 ActiveX Control Buffer Overflow .
  • Sienzo Digital Music Mentor Web site: Sienzo - Digital Music Mentor, Guitar chords and bass tabs software for You.
  • TEC Software Web site: TEC Sound Recorder 1.0.
  • BID-22196: NCTsoft NCTAudioFile2 ActiveX Control Remote Buffer Overflow Vulnerability
  • BID-23892: RETIRED: Musiclab BearShare NCTAudioFile2 ActiveX Control Buffer Overflow Vulnerability
  • CVE-2007-0018: Stack-based buffer overflow in the NCTAudioFile2.AudioFile ActiveX control (NCTAudioFile2.dll), as used by multiple products, allows remote attackers to execute arbitrary code via a long argument to the SetFormatLikeSample function. NOTE: the products include (1) NCTsoft NCTAudioStudio, NCTAudioEditor, and NCTDialogicVoice; (2) Magic Audio Recorder, Music Editor, and Audio Converter; (3) Aurora Media Workshop; DB Audio Mixer And Editor; (4) J. Hepple Products including Fx Audio Editor and others; (5) EXPStudio Audio Editor; (6) iMesh; (7) Quikscribe; (8) RMBSoft AudioConvert and SoundEdit Pro 2.1; (9) CDBurnerXP; (10) Code-it Software Wave MP3 Editor and aBasic Editor; (11) Movavi VideoMessage, DVD to iPod, and others; (12) SoftDiv Software Dexster, iVideoMAX, and others; (13) Sienzo Digit
  • OSVDB ID: 32032: Multiple Products NCTsoft NCTAudioFile2.AudioFile ActiveX (NCTAudioFile2.dll) SetFormatLikeSample() Method Overflow
  • SA22922: BearShare NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23475: NCTsoft Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23485: Magic Video Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23493: Aurora Media Workshop NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23495: DB Audio Mixer And Editor NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23511: J. Hepple Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23516: EXPStudio Audio Editor NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23530: iMesh NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23532: Quikscribe Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23534: R.M. de Boer Software NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23535: CDBurnerXP Pro NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23536: Code-it Software Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23541: Movavi Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23542: SoftDiv Software Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23543: Sienzo Digital Music Mentor NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23544: MP3 Normalizer NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23546: Roemer Software Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23548: Audio Edit Magic NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23550: Joshua Software Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23551: Virtual CD Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23552: Cheetah CD/DVD Burner NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23553: Mystik Media Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23554: Power Audio Editor NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23557: DanDans Digital Media Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23558: Xrlly Software NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23560: Absolute Software Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23561: Easy Ringtone Maker NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23562: RecordNRip NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23565: McFunSoft Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23568: MP3 WAV Converter NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23745: NextLevel Systems Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23753: Altdo Software Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA23795: Cool Audio Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA25993: TEC Sound Recorder NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA26046: Hit-Recorder NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA26100: A-one Software Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA26101: Plato Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA28407: Oracle Siebel SimBuilder NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA30406: RockN Audio NCTSoft ActiveX Controls Buffer Overflow Vulnerabilities
  • SA30424: Focus Systems Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA30439: audiotoolsfactory.com Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA30446: Gold Wave Editor NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA30447: HiFi Software Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA30450: Digital Smart Software Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA30459: Color7 Technology Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA30506: Cool Record Edit NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA30508: ALO Software Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA30509: ColorfulSoft Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA30510: Akram Software Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA30511: goodvdsoft.com Products NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA30528: MightSOFT Products NCTSoft ActiveX Controls Buffer Overflow Vulnerabilities
  • SA30530: Ease MP3 Recorder NCTAudioFile2 ActiveX Control Buffer Overflow
  • SA30533: Magic Rm AVI Mpeg to MP3 Converter & Editor NCTSoft ActiveX Controls Buffer Overflows
  • US-CERT VU#292713: Online Media Technologies NCTsoft NCTAudioFile2 ActiveX buffer overflow
  • VUPEN/ADV-2007-0310: NCTsoft Products NCTAudioFile2 ActiveX Control Remote Buffer Overflow Vulnerability

Platforms Affected:

  • Absolute Absolute MP3 Splitter 2.5.4
  • Absolute Absolute Sound Recorder 3.4.5
  • Absolute Absolute Video to Audio Converter 2.7.9
  • Akram Software Akram Audio Converter 5.0
  • Akram Software Akram Audio Editor 2.2
  • Akram Software Akram Media Creator 1.11
  • ALO ALO Audio Editor 3.2
  • ALO ALO RM MP3 Cutter 1.0
  • ALO ALO RM to MP3 Converter 7.0
  • Altdo Altdo Convert Mp3 Master 1.1
  • Altdo Altdo Mp3 Record and Edit Audio Master 1.2
  • American Shareware MP3 WAV Converter 3.18
  • Audio Tools Factory Vista MP3 Recorder 1.00
  • AudioEditMagic Soft Audio Edit Magic 9.2.3 Build 389
  • AudioEditMagic Soft Audio Edit Magic 9.2.6 Build 512
  • Audiotool.net Ease MP3 Recorder 1.50
  • Aurora Software Aurora Media Workshop 3.3.25
  • Cheetah Websites Corporation Cheetah CD Burner 3.56
  • Cheetah Websites Corporation Cheetah DVD Burner 1.79
  • Code-it Software aBasic Editor 10.1
  • Code-it Software Wave MP3 Editor 10.1
  • Color7 Technology Music Fan's Factory 9.2.23.3
  • Color7 Technology Power Music Editor 7.4.0.10
  • ColorfulSoft Colorful Audio Recorder 2.0
  • ColorfulSoft Colorful Music Editor 2.0
  • Cool Audio Magic Audio Editor Pro 10.3.1 Build 476
  • Cool Audio Magic Music Studio Pro 7.0.2.1 Build 500
  • CoolRecordEdit Cool Record Edit Deluxe 5.9.5
  • DanDans Easy Audio Editor 7.4
  • DanDans Full Audio Converter 4.2
  • DanDans Music Editing Master 5.2
  • DanDans Visual Video Converter 4.4
  • Digital Borneo DB Audio Mixer And Editor 1.1.0
  • Digital Smart Software Audio Convert Master 7.4.0.10
  • Digital Smart Software Digital Audio CD Burner 7.4.0.10
  • Digital Smart Software Digital Audio Editor 7.4.0.10
  • Digital Smart Software Digital Music Record Convert Burn Station 7.4.3.15
  • Digital Smart Software Digital Music Studio 8.0.4.1
  • Easy Ringtone Maker Easy Ringtone Maker 2.0.5
  • EXPStudio EXPStudio Audio Editor 4.0.2
  • EXPStudio EXPStudio Audio Editor 4.0.3
  • Focus Systems Focus All CD DVD Burner 2.1.0.1
  • Focus Systems Focus Audio Converter 2.1.0.1
  • Focus Systems Focus MP3 Recorder Pro 3.4
  • Focus Systems Focus MP3 Recorder Splitter 3.4
  • GooDVDSof Goo DVD to Video Converter 1.00
  • GooDVDSoft Easy DVD Converter 1.00
  • GooDVDSoft Goo DVD to Audio Converter 1.00
  • GooDVDSoft Goo DVD to MP3 Converter 1.00
  • GooDVDSoft Goo DVD to MPEG Converter 1.00
  • GooDVDSoft Goo DVD to OGG Converter 1.00
  • GooDVDSoft Goo DVD to RM Converter 1.00
  • GooDVDSoft Goo DVD to WAV Converter 1.00
  • GooDVDSoft Goo DVD to WMA Converter 1.00
  • GooDVDSoft Goo DVD to WMV Converter 1.00
  • H+H Software Virtual CD 6.0.0.7
  • H+H Software Virtual CD 7.1.0.2
  • H+H Software Virtual CD 8.0.0.6
  • H+H Software Virtual CD File Server 7.1.0.3
  • HiFi Software HiFi CD to MP3 RM Ripper 1.70
  • HiFi Software HiFi MP3 Audio Recorder Joiner 3.00
  • HiFi Software HiFi MP3 Audio Splitter Joiner 3.00
  • HiFi Software HiFi MP3 Recorder Joiner 2.00
  • HiFi Software HiFi MP3 WMA Cutter 2.00
  • HiFi Software HiFi OGG Splitter Joiner 3.00
  • HiFi Software HiFi RM Audio Converter 2.70
  • HiFi Software HiFi RM MP3 Converter 2.00
  • HiFi Software HiFi RM OCG Converter 2.00
  • HiFi Software HiFi RM WAV Converter 2.00
  • HiFi Software HiFi RM WMA Converter 2.00
  • HiFi Software HiFi Video to Audio Cutter 2.00
  • HiFi Software HiFi WAV Splitter Joiner 3.00
  • HiFi Software HiFi WMA Recorder Joiner 2.00
  • HiFi Software HiFi WMA Splitter Joiner 3.00
  • iMesh iMesh 7.0.2.26789
  • J Hepple Fx Audio ConCat 1.2.0 Beta
  • J Hepple FX Audio Editor 4.7.11
  • J Hepple Fx Audio Tools 7.3.4
  • J Hepple Fx Magic Music 5.7.7
  • J Hepple Fx Movie Joiner 6.2.8
  • J Hepple Fx Movie Joiner and Splitter 6.2.8
  • J Hepple Fx Movie Splitter 6.4.7
  • J Hepple Fx New Sound 5.1.1
  • J Hepple Fx Video Converter 7.51.21
  • Joshua Software Audio Convertor Plus 2.2
  • Joshua Software Video Converter Plus 3.01
  • Magic Magic Rm AVI Mpeg to MP3 Converter & Editor 2.0
  • Magic Video Software Magic Audio Converter 8.2.6 b719
  • Magic Video Software Magic Audio Recorder 5.3.7
  • Magic Video Software Magic Music Editor 5.2.2
  • McFunSoft McFunSoft Audio Editor 6.3.3 Build 489
  • McFunSoft McFunSoft Audio Recorder for Free 6.1
  • McFunSoft McFunSoft Audio Studio 6.6.3 Build 479
  • McFunSoft McFunSoft iPod Audio Studio 6.2.4
  • McFunSoft McFunSoft iPod Music Converter 5.1
  • McFunSoft McFunSoft Recording to iPod Solution 5.1
  • MightSOFT Audio Editor Pro 2.80
  • MightSOFT Audio Editor Pro 2.91
  • MightSOFT EZ Audio Server 2.0
  • Movavi Movavi ChiliBurner 2.3
  • Movavi Movavi ConvertMovie 4.4
  • Movavi Movavi DVD to iPod 1.0
  • Movavi Movavi SplitMovie 1.4
  • Movavi Movavi Suite 3.5
  • Movavi Movavi VideoMessage 1.0
  • mp3-soft MP3 Normalizer 1.03
  • Musiclab-llc Bearshare 6.0.2.26789
  • Mystik Media AudioEdit Deluxe 4.10
  • Mystik Media Blaze Media Pro 7.0
  • Mystik Media Blaze MediaConvert 3.4
  • Mystik Media ContextConvert Pro 3.1
  • NCTsoft NCTAudioEditor 2.7.1
  • NCTsoft NCTAudioFile2 ActiveX Control
  • NCTsoft NCTAudioStudio 2.7.1
  • NCTsoft NCTDialogicVoice 2.7.1
  • NextLevel Software Audio Editor Gold 9.2.5 Build 424
  • NextLevel Software Audio Studio Gold 7.0.1.1 Build 500
  • Oracle Siebel SimBuilder 7.8.5 build 2635
  • Quikscribe Quikscribe Player 5.022.05
  • Quikscribe Quikscribe Recorder 5.021.29
  • recordnrip.com RecordNRip 1.0
  • RMBSOFT AudioConvert 3.1.0.125
  • RMBSOFT SoundEdit Pro 2.1
  • RockN Audio RockN Audio 4.1
  • Roemer Software Easy Hi-Q Converter 1.7
  • Roemer Software Easy Hi-Q Recorder 2.0
  • Roemer Software FREE Hi-Q Recorder 1.9
  • Sienzo Sienzo Digital Music Mentor 2.6.0.3
  • SmartMedia Systems Power Audio Editor 11.0.1
  • Softdiv Software Dexster 3.0
  • Softdiv Software iVideoMAX 3.9
  • Softdiv Software MP3 to WAV Converter 3.0
  • Softdiv Software Snosh 1.4
  • Softdiv Software VIDEOzilla 2.5
  • Stefan Haglund, Fredrik Haglund, Florian Schmitz CDBurnerXP Pro 3.0.116
  • Xrlly Software Arial Audio Converter 2.3.40
  • Xrlly Software Arial Sound Recorder 1.4.3
  • Xrlly Software Text to Speech Maker 1.3.8

Reported:

Jan 24, 2007

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

For corrections or additions please email ignore thisxforceignore this@ignore thisus.ignore thisibm.comignore this

Return to the main page

* According to the Forum of Incident Response and Security Teams (FIRST), the Common Vulnerability Scoring System (CVSS) is an "industry open standard designed to convey vulnerability severity and help to determine urgency and priority of response." IBM PROVIDES THE CVSS SCORES "AS IS" WITHOUT WARRANTY OF ANY KIND, INCLUDING THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. CUSTOMERS ARE RESPONSIBLE FOR ASSESSING THE IMPACT OF ANY ACTUAL OR POTENTIAL SECURITY VULNERABILITY.
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall IBM be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

About IBM Internet Security Systems

IBM Internet Security Systems is a trusted security advisor to thousands of the world's leading businesses and governments, helping to provide pre-emptive protection for networks, desktops and servers. The IBM Proventia? integrated security platform is designed to automatically protect against both known and unknown threats, helping to keep networks up and running and shield customers from online attacks before they impact business assets. IBM Internet Security Systems products and services are based on the proactive security intelligence of its X-Force? research and development team ? an unequivocal world authority in vulnerability and threat research. The IBM Internet Security Systems product line is also complemented by comprehensive Managed Security Services and Professional Security Services. For more information, visit the IBM Internet Security Systems Web site at www.iss.net or call 800-776-2362.