Primary

Context

River Past Audio Converter Local Buffer Overflow Vulnerability Leading to Denial-of-Service

Vulnerability

A local buffer overflow vulnerability has been identified in River Past Audio Converter version 7.7.16. This vulnerability resides in the activation code field, where local attackers can cause a denial-of-service condition by inputting an oversized string. By pasting a large payload of repeated characters into the 'E-Mail and Activation Code' field and clicking 'Activate', the application crashes.

Impact

Exploitation of this vulnerability leads to a denial-of-service condition, causing the application to crash.

Reproduction

To reproduce this vulnerability, first create a text file named 'Evil.txt' containing approximately 3000 bytes of repeated characters. After the file is created, open River Past Audio Converter version 7.7.16. Copy the contents of 'Evil.txt' into the 'E-Mail and Activation Code' field. Click the 'Activate' button, which will trigger the application to crash.

Added: Mar 26, 2026, 2:32 PM

Updated: Mar 26, 2026, 2:32 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

4.6

remediation

0.0

relevance

4.7

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

4.6

remediation

0.0

relevance

4.7

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

River Past Audio Converter Local Buffer Overflow Vulnerability Leading to Denial-of-Service

Vulnerability

Impact

Reproduction

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating