Primary

Context

AnyBurn Buffer Overflow Vulnerability Leading to Denial-of-Service

Vulnerability

A local buffer overflow vulnerability has been identified in AnyBurn version 4.3. This vulnerability allows local attackers to cause a denial-of-service condition by crashing the application. The issue arises when an excessively long string, up to 10,000 bytes, is supplied in the 'Image file name' field during the 'Copy disk to Image' operation.

Impact

Exploitation of this vulnerability leads to a crash of the AnyBurn application, causing a denial-of-service condition.

Reproduction

To reproduce this vulnerability, first create a text file named 'EVIL.txt' containing a 10,000-byte payload of repeated 'A' characters. Afterward, open AnyBurn and select the 'Copy disk to Image' option. Paste the contents of 'EVIL.txt' into the 'Image file name' parameter and click 'Create Now'. This action will trigger the buffer overflow, causing the application to crash.

Added: Mar 26, 2026, 2:36 PM

Updated: Mar 26, 2026, 2:36 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.6

remediation

0.0

relevance

4.7

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.6

remediation

0.0

relevance

4.7

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

AnyBurn Buffer Overflow Vulnerability Leading to Denial-of-Service

Vulnerability

Impact

Reproduction

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating