CVE-2007-6510

ProWizard 4 PC <1.62 - RCE

Title source: llm

Description

Multiple stack-based buffer overflows in ProWizard 4 PC (prowiz) 1.62 and earlier allow remote attackers to execute arbitrary code via a crafted file to the (1) AMOS-MusicBank, (2) FuzzacPacker, and (3) QuadraComposer rippers; and (4) have an unknown impact via a crafted file to the SkytPacker ripper.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Luigi Auriemma · cdosmultiple

https://www.exploit-db.com/exploits/30906

View Code ZIP pw:eip

References (5)

[Third Party Advisory] http://aluigi.altervista.org/adv/prowizbof-adv.txt

[Various Sources] http://aluigi.org/poc/prowizbof.zip

[Vendor Advisory] http://secunia.com/advisories/28173

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/39152

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/26953

Scores

EPSS 0.1342

EPSS Percentile 94.2%

Details

CWE

CWE-119

Status published

Products (21)

prowizard/prowizard_4_pc 1.0

prowizard/prowizard_4_pc 1.40

prowizard/prowizard_4_pc 1.44.005

prowizard/prowizard_4_pc 1.45.c3

prowizard/prowizard_4_pc 1.46

prowizard/prowizard_4_pc 1.47

prowizard/prowizard_4_pc 1.48

prowizard/prowizard_4_pc 1.49.0

prowizard/prowizard_4_pc 1.49.1

prowizard/prowizard_4_pc 1.49.2

... and 11 more

Published Dec 21, 2007

Tracked Since Feb 18, 2026