CVE-2015-7243

Boxoft WAV to MP3 Converter - Buffer Overflow via Crafted WAV File

Title source: llm

Exploitation Summary

EIP tracks 3 public exploits for CVE-2015-7243. PoCs published by Metasploit, Robbie Corley, Robbie Corley, Shelby Pace, including Metasploit module exploits/windows/fileformat/boxoft_wav_to_mp3.

AI-analyzed exploit summary This Metasploit module exploits a stack buffer overflow in Boxoft WAV to MP3 Converter v1.1 by crafting a malicious WAV file. The exploit leverages a P/P/R SEH overwrite to execute arbitrary shellcode.

Description

Buffer overflow in Boxoft WAV to MP3 Converter allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted WAV file.

Exploits (3)

exploitdb WORKING POC VERIFIED

by Metasploit · rubylocalwindows

https://www.exploit-db.com/exploits/44971

View Code ZIP pw:eip

This Metasploit module exploits a stack buffer overflow in Boxoft WAV to MP3 Converter v1.1 by crafting a malicious WAV file. The exploit leverages a P/P/R SEH overwrite to execute arbitrary shellcode.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Boxoft WAV to MP3 Converter v1.1

No auth needed

Prerequisites: Victim must open the malicious WAV file in the vulnerable application

MITRE ATT&CK

T1203 - Exploitation for Client Execution T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →

exploitdb WORKING POC VERIFIED

by Robbie Corley · perllocalwindows

https://www.exploit-db.com/exploits/38035

View Code ZIP pw:eip

This exploit leverages a buffer overflow in Boxoft WAV to MP3 Converter by crafting a malicious .wav file with a payload exceeding 4000 characters, triggering an SEH bypass to execute arbitrary shellcode (MessageBox pop-up).

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Boxoft WAV to MP3 Converter (version unspecified)

No auth needed

Prerequisites: Victim must open the malicious .wav file in the vulnerable software

MITRE ATT&CK

T1203 - Exploitation for Client Execution T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →

metasploit WORKING POC NORMAL

by Robbie Corley, Shelby Pace · rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/fileformat/boxoft_wav_to_mp3.rb

View Code ZIP pw:eip

This Metasploit module exploits a stack buffer overflow in Boxoft WAV to MP3 Converter v1.1 by crafting a malicious WAV file that triggers an SEH overwrite, leading to arbitrary code execution.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Boxoft WAV to MP3 Converter v1.1

No auth needed

Prerequisites: Victim must open the malicious WAV file in the vulnerable application

MITRE ATT&CK

T1203 - Exploitation for Client Execution T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4

Core References

Exploit x_refsource_misc

http://packetstormsecurity.com/files/137277/Boxoft-Wav-To-MP3-Converter-1.0-Buffer-Overflow.html

Exploit exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/38035/

Exploit, Third Party Advisory exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/44971/

Exploit x_refsource_misc

http://packetstormsecurity.com/files/133377/Boxoft-WAV-To-MP3-Converter-Buffer-Overflow.html

Scores

EPSS 0.7332

EPSS Percentile 98.8%

Details

CWE

CWE-119

Status published

Products (1)

boxoft/boxoft_wav_to_mp3_converter

Published Sep 18, 2015

Tracked Since Feb 18, 2026