CVE-2019-25616

MEDIUM

AnMing MP3 CD Burner 2.0 Local Denial of Service

Title source: cna

Exploitation Summary

EIP tracks 1 public exploit for CVE-2019-25616. PoCs published by Achilles.

AI-analyzed exploit summary This exploit demonstrates a local denial-of-service (DoS) vulnerability in AnMing MP3 CD Burner 2.0 by overflowing a buffer in the registration field with a large payload of 'A' characters (6000 bytes). The crash occurs when the malicious input is pasted into the 'Your Name and Registration Code' field.

Description

AnMing MP3 CD Burner 2.0 contains a buffer overflow vulnerability that allows local attackers to crash the application by supplying an oversized string. Attackers can paste a 6000-byte payload into the registration name field to trigger a denial of service condition.

Exploits (1)

exploitdb WORKING POC

by Achilles · pythondoswindows

https://www.exploit-db.com/exploits/46754

View Code ZIP pw:eip

This exploit demonstrates a local denial-of-service (DoS) vulnerability in AnMing MP3 CD Burner 2.0 by overflowing a buffer in the registration field with a large payload of 'A' characters (6000 bytes). The crash occurs when the malicious input is pasted into the 'Your Name and Registration Code' field.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: AnMing MP3 CD Burner 2.0

No auth needed

Prerequisites: Python to generate the payload · Access to the target system to paste the payload

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Mar 22, 2026 Full analysis →

References (4)

Core 4

Core References

Exploit exploit

ExploitDB-46754

https://www.exploit-db.com/exploits/46754

Product product

Official Product Homepage

http://www.ddz1977.com/

Product product

Product Reference

https://files.downloadnow.com/s/software/10/56/16/74/anming_setup.zip?token=1556228877_063f2dc0aed064ee5d13374d8509661c&fileName=anming_setup.zip

Third Party Advisory third-party-advisory

VulnCheck Advisory: AnMing MP3 CD Burner 2.0 Local Denial of Service

https://www.vulncheck.com/advisories/anming-mp3-cd-burner-local-denial-of-service

Scores

CVSS v3 6.2

EPSS 0.0014

EPSS Percentile 3.7%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact partial

Details

CWE

CWE-434

Status published

Products (1)

Ddz1977/AnMing MP3 CD Burner 2.0

Published Mar 22, 2026

Tracked Since Mar 22, 2026