Primary

Context

Zortam Mp3 Media Studio Buffer Overflow Vulnerability Allowing Remote Code Execution

Vulnerability

A buffer overflow vulnerability has been identified in Zortam Mp3 Media Studio version 27.60. The issue arises during the library creation file selection process, where attackers can exploit the vulnerability to execute remote code. By crafting a malicious text file containing shellcode, an attacker can trigger an overwrite of the structured exception handler (SEH), leading to the execution of arbitrary commands on the target system.

Impact

Exploitation of this vulnerability allows for remote code execution on the affected system.

Reproduction

The vulnerability can be reproduced by using a Perl script to create a text file that exploits the buffer overflow. This file is then pasted into the 'Select Folder' field when creating a new library in Zortam Mp3 Media Studio. Once the 'OK' button is clicked, the shellcode is executed on the system.

Added: Jan 28, 2026, 6:41 PM

Updated: Jan 28, 2026, 6:41 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

5.0

remediation

0.0

relevance

2.4

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

5.0

remediation

0.0

relevance

2.4

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Zortam Mp3 Media Studio Buffer Overflow Vulnerability Allowing Remote Code Execution

Vulnerability

Impact

Reproduction

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating