Buffer Overflow Vulnerability in Ether MP3 CD Burner by Ether
CVE-2021-47785

7HIGH

Key Information:

Vendor

Mp3-avi-mpeg-wmv-rm-to-audio-cd-burner

Status
Ether Mp3 Cd Burner
Vendor
CVE Published:
15 January 2026

Badges

๐Ÿ‘พ Exploit Exists๐ŸŸก Public PoC

What is CVE-2021-47785?

Ether MP3 CD Burner version 1.3.8 suffers from a buffer overflow vulnerability in its registration name field. This weakness can be exploited by attackers to perform remote code execution. By crafting a malicious input, an attacker can overwrite Structured Exception Handling (SEH) handlers, thereby executing arbitrary code and establishing a bind shell on port 3110. The issue stems from inadequate input validation, making it a critical concern for users of this software.

Affected Version(s)

Ether_MP3_CD_Burner 1.3.8

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2021-47785 - Proof of Concept

References

https://www.exploit-db.com/exploits/50332
exploit
https://download.cnet.com/mp3avimpegwmvrm-to-audio-cd-bur...
product
https://www.vulncheck.com/advisories/ethermpcdburner-buff...
third-party-advisory

CVSS V4

Score:
7
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
Unknown

Timeline

  • ๐ŸŸก

    Public PoC available

  • ๐Ÿ‘พ

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

Credit

Achilles
JSON
.