CVE-2019-5618
HIGHA-pdf Wav TO Mp3 - Out-of-Bounds Write
Title source: ruleDescription
A-PDF WAV to MP3 version 1.0.0 suffers from an instance of CWE-121: Stack-based Buffer Overflow.
Exploits (1)
metasploit
WORKING POC
NORMAL
by d4rk-h4ck3r, Dr_IDE, dookie · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/fileformat/a_pdf_wav_to_mp3.rb
Scores
CVSS v3
7.8
EPSS
0.5525
EPSS Percentile
98.0%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Classification
CWE
CWE-121
CWE-787
Status
published
Affected Products (1)
a-pdf/wav_to_mp3
Timeline
Published
Apr 29, 2020
Tracked Since
Feb 18, 2026