CVE-2008-4342

BurnAware - Arbitrary File Write via NMSDVDX.DVDEngineX ActiveX Control

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-4342. PoCs published by Nine:Situations:Group.

AI-analyzed exploit summary This exploit leverages the NuMedia Soft NMS DVD Burning SDK ActiveX control to overwrite a file in the Help and Support Center directory, then executes arbitrary VBScript via the hcp:// protocol. The PoC launches calc.exe as a demonstration of remote code execution.

Description

NuMedia Soft NMS DVD Burning SDK Activex NMSDVDX.DVDEngineX.1 ActiveX control (NMSDVDX.dll) 1.013C and earlier, as used in CDBurnerXP 4.2.1.976, BurnAware 2.1.3, Blaze Media Pro 8.02 Special Edition, and possibly other products, allows remote attackers to overwrite and create arbitrary files via calls to the EnableLog and LogMessage methods. NOTE: this issue might only be exploitable in limited environments or non-default browser settings. NOTE: some of these details are obtained from third party information. NOTE: this can be leveraged for remote code execution by accessing files using hcp:// URLs.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Nine:Situations:Group · htmlremotewindows
https://www.exploit-db.com/exploits/6491

This exploit leverages the NuMedia Soft NMS DVD Burning SDK ActiveX control to overwrite a file in the Help and Support Center directory, then executes arbitrary VBScript via the hcp:// protocol. The PoC launches calc.exe as a demonstration of remote code execution.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: NuMedia Soft NMS DVD Burning SDK (NMSDVDX.dll), tested against CDBurnerXP 4.2.1.976
No auth needed
Prerequisites: Victim must use Internet Explorer with ActiveX enabled · Target system must have the vulnerable ActiveX control installed
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (11)

Core 11
Core References
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/31936
Exploit, URL Repurposed x_refsource_misc
http://www.shinnai.net/xplits/TXT_TrWE9AJA8nQpuFsnxBcq
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/6491
Vendor Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2008/2663
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/497831/100/0/threaded
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/45330
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/32455
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/31949
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/31374
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/31950

Scores

EPSS 0.1720
EPSS Percentile 96.7%

Details

CWE
CWE-20
Status published
Products (3)
burnaware_technologies/burnaware 2.1.3 unknown (3 CPE variants)
impressum/cdburnerxp 4.2.1.976
numedia_soft/numedia_dvd_burning_sdk 1.008
Published Sep 30, 2008
Tracked Since Feb 18, 2026