CVE-2011-5171

CyberLink Power2Go 7 build 196 and 8 build 1031 - Remote Code Execution via Crafted Project File Parameters

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 3 public exploits for CVE-2011-5171. PoCs published by Metasploit, modpr0be, including Metasploit module exploits/windows/fileformat/cyberlink_p2g_bof.

AI-analyzed exploit summary This Metasploit module exploits a stack buffer overflow in CyberLink Power2Go 8.x via a malformed p2g file with an overly long 'name' attribute, leading to SEH overwrite and arbitrary code execution.

Description

Multiple stack-based buffer overflows in CyberLink Power2Go 7 (build 196) and 8 (build 1031) allow remote attackers to execute arbitrary code via the (1) src and (2) name parameters in a p2g project file.

Exploits (3)

exploitdb WORKING POC VERIFIED
by Metasploit · rubylocalwindows
https://www.exploit-db.com/exploits/18747

This Metasploit module exploits a stack buffer overflow in CyberLink Power2Go 8.x via a malformed p2g file with an overly long 'name' attribute, leading to SEH overwrite and arbitrary code execution.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: CyberLink Power2Go 8.x
No auth needed
Prerequisites: Victim must open the malformed p2g file
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by modpr0be · pythondoswindows
https://www.exploit-db.com/exploits/18220

This exploit targets a stack-based buffer overflow in CyberLink Power2Go and WaveEditor via malformed project files. It crafts a .p2g or .wve file with an overly long 'File name' field to overwrite SEH, leading to potential arbitrary code execution.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: CyberLink Power2Go 7 (build 196), Power2Go 8 (build 1031), WaveEditor 2.0 (build 2204)
No auth needed
Prerequisites: Victim must open the malformed project file with vulnerable CyberLink software
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC GREAT
rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/fileformat/cyberlink_p2g_bof.rb

This Metasploit module exploits a stack buffer overflow in CyberLink Power2Go 8.x via a malformed p2g file with an overly long 'name' attribute, leading to SEH overwrite and arbitrary code execution.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: CyberLink Power2Go 8.x
No auth needed
Prerequisites: Victim must open a maliciously crafted p2g file
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5
Core References
Exploit exploit x_refsource_exploit-db
http://www.exploit-db.com/exploits/18220
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/71723
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/77600
US Government Resource third-party-advisory x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/158003
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/47145

Scores

EPSS 0.4579
EPSS Percentile 98.6%

Details

CWE
CWE-119
Status published
Products (2)
cyberlink/power2go 7.0
cyberlink/power2go 8.0
Published Sep 15, 2012
Tracked Since Feb 18, 2026