CVE-2011-0499

VideoSpirit Pro < 1.6.8.1 and VideoSpirit Lite < 1.4.0.1 - Buffer Overflow via Long Name Attribute in .visprj File

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 3 public exploits for CVE-2011-0499. PoCs published by Acidgen, including Metasploit module exploits/windows/fileformat/videospirit_visprj.

AI-analyzed exploit summary This Metasploit module exploits a stack buffer overflow in Video Spirit Pro <= 1.70 via a malicious .visprj file, bypassing DEP and ASLR using ROP gadgets from OverlayPlug.dll. It achieves arbitrary code execution on Windows XP, Vista, and 7.

Description

Buffer overflow in VideoSpirit Pro 1.6.8.1 and possibly earlier versions, and VideoSpirit Lite 1.4.0.1 and possibly other versions, allows user-assisted remote attackers to execute arbitrary code via a VideoSpirit project (.visprj) file containing a valitem element with a long "name" attribute. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Exploits (3)

exploitdb WORKING POC
rubylocalwindows
https://www.exploit-db.com/exploits/17153

This Metasploit module exploits a stack buffer overflow in Video Spirit Pro <= 1.70 via a malicious .visprj file, bypassing DEP and ASLR using ROP gadgets from OverlayPlug.dll. It achieves arbitrary code execution on Windows XP, Vista, and 7.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Complex
Reliability
Reliable
Target: VeryTools Video Spirit Pro <= 1.70
No auth needed
Prerequisites: Victim must open the malicious .visprj file
devstral-2 · analyzed Feb 19, 2026 Full analysis →
exploitdb WORKING POC
pythonlocalwindows
https://www.exploit-db.com/exploits/15936

This exploit demonstrates a local buffer overflow vulnerability in VideoSpirit Pro v1.68 by crafting a malicious .visprj project file with an overly long 'mp3' value, leading to arbitrary code execution via a structured payload.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: VideoSpirit Pro v1.68
No auth needed
Prerequisites: Local access to the target system · Ability to deliver the malicious .visprj file
devstral-2 · analyzed Feb 19, 2026 Full analysis →
metasploit WORKING POC GOOD
by Acidgen · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/fileformat/videospirit_visprj.rb

This Metasploit module exploits a stack buffer overflow in Video Spirit Pro <= 1.70 via a malicious .visprj file, bypassing DEP and ASLR on Windows XP, Vista, and 7. It uses ROP gadgets to achieve arbitrary code execution.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Complex
Reliability
Reliable
Target: VeryTools Video Spirit Pro <= 1.70
No auth needed
Prerequisites: Victim must open a malicious .visprj file
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/42876
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/42866
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/64863

Scores

EPSS 0.5953
EPSS Percentile 98.3%

Details

CWE
CWE-119
Status published
Products (3)
verytools/videospirit_lite < 1.4.0.1
verytools/videospirit_pro 1.68
verytools/videospirit_pro < 1.6.8.1
Published Jan 20, 2011
Tracked Since Feb 18, 2026