CVE-2006-6665

Astonsoft DeepBurner Pro & Free <1.8.0 - RCE

Title source: llm

Description

Buffer overflow in Astonsoft DeepBurner Pro and Free 1.8.0 and earlier allows user-assisted remote attackers to execute arbitrary code via a long file name tag in a dbr file.

Exploits (3)

exploitdb WORKING POC VERIFIED

by Metasploit · rubylocalwindows

https://www.exploit-db.com/exploits/16675

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by Expanders · clocalwindows

https://www.exploit-db.com/exploits/2950

View Code ZIP pw:eip

metasploit WORKING POC GREAT

by Expanders, fl0 fl0w, jduck · rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/fileformat/deepburner_path.rb

View Code ZIP pw:eip

References (4)

[Third Party Advisory] http://secunia.com/advisories/23367

[Third Party Advisory] http://www.vupen.com/english/advisories/2006/5066

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/21657

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/2950

Scores

EPSS 0.7566

EPSS Percentile 98.9%

Details

Status published

Products (1)

astonsoft/deepburner < 1.8.0 (2 CPE variants)

Published Dec 20, 2006

Tracked Since Feb 18, 2026