CVE-2017-14627

HIGH

CyberLink LabelPrint 2.5 - Stack-based Buffer Overflow via LPP Project File Parameters

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 3 public exploits for CVE-2017-14627. PoCs published by Metasploit, f3ci, modpr0be <[email protected]>, f3ci <[email protected]>, including Metasploit module exploits/windows/fileformat/cyberlink_lpp_bof.

AI-analyzed exploit summary This Metasploit module exploits a stack buffer overflow in CyberLink LabelPrint 2.5 via a maliciously crafted .lpp file, leveraging SEH overwrites and Unicode-encoded shellcode to achieve remote code execution.

Description

Stack-based buffer overflows in CyberLink LabelPrint 2.5 allow remote attackers to execute arbitrary code via the (1) author (inside the INFORMATION tag), (2) name (inside the INFORMATION tag), (3) artist (inside the TRACK tag), or (4) default (inside the TEXT tag) parameter in an lpp project file.

Exploits (3)

exploitdb WORKING POC VERIFIED
by Metasploit · rubylocalwindows
https://www.exploit-db.com/exploits/45985

This Metasploit module exploits a stack buffer overflow in CyberLink LabelPrint 2.5 via a maliciously crafted .lpp file, leveraging SEH overwrites and Unicode-encoded shellcode to achieve remote code execution.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Complex
Reliability
Reliable
Target: CyberLink LabelPrint <= 2.5
No auth needed
Prerequisites: Victim must open the malicious .lpp file
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by f3ci · pythonlocalwindows
https://www.exploit-db.com/exploits/42777

This exploit targets a Unicode stack overflow vulnerability in CyberLink LabelPrint <=2.5. It generates a malicious .lpp file that triggers a buffer overflow, leading to arbitrary code execution via a bind shell payload.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: CyberLink LabelPrint <=2.5
No auth needed
Prerequisites: Victim must open the malicious .lpp file with CyberLink LabelPrint
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC NORMAL
by modpr0be <[email protected]>, f3ci <[email protected]> · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/fileformat/cyberlink_lpp_bof.rb

This Metasploit module exploits a stack buffer overflow in CyberLink LabelPrint 2.5 via a maliciously crafted .lpp file, leveraging SEH overwrites and Unicode-aware shellcode to achieve remote code execution.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Complex
Reliability
Reliable
Target: CyberLink LabelPrint <= 2.5
No auth needed
Prerequisites: Victim must open the malicious .lpp file
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/42777/
Exploit, Technical Description, Third Party Advisory x_refsource_misc
https://blog.spentera.com/2017/09/19/unicode-stack-based-buffer-overflow-on-cyberlink-labelprint-2-5/
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/45985/

Scores

CVSS v3 7.8
EPSS 0.5020
EPSS Percentile 97.9%
Attack Vector LOCAL
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE
CWE-119
Status published
Products (1)
cyberlink/labelprint 2.5
Published Sep 23, 2017
Tracked Since Feb 18, 2026