File Overwrite Vulnerability in NuMedia Soft NMS DVD Burning SDK ActiveX Control
CVE-2008-4342

Currently unrated

Key Information:

Vendor

Burnaware Technologies

Status
Burnaware
Numedia Dvd Burning Sdk
Cdburnerxp
Vendor
CVE Published:
30 September 2008

What is CVE-2008-4342?

The NMS DVD Burning SDK ActiveX control, specifically NMSDVDX.DVDEngineX.1, is prone to a file overwrite vulnerability due to improper handling of method calls. This issue can be exploited by remote attackers using the EnableLog and LogMessage methods to create or overwrite arbitrary files. While this vulnerability may primarily affect specific non-default browser settings or limited environments, it poses significant risks for users of affected applications like CDBurnerXP, BurnAware, and Blaze Media Pro, as it can be leveraged for remote code execution through hcp:// URL access.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://secunia.com/advisories/31936
third-party-advisoryx_refsource_SECUNIA
http://www.shinnai.net/xplits/TXT_TrWE9AJA8nQpuFsnxBcq
x_refsource_MISC
https://www.exploit-db.com/exploits/6491
exploitx_refsource_EXPLOIT-DB

EPSS Score

26% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.