Vulnerability Description
Audio Playback Recorder 3.2.2 contains a local buffer overflow vulnerability in the eject and registration parameters that allows attackers to execute arbitrary code. Attackers can craft malicious payloads and overwrite Structured Exception Handler (SEH) to execute shellcode when pasting specially crafted input into the application's input fields.
CVSS Score
HIGH
Related Weaknesses (CWE)
References
- https://archive.org/details/tucows_288670_Audio_Playback_Recorder
- https://web.archive.org/web/20210105222148/https://whitecr0wz.github.io/assets/i
- https://www.exploit-db.com/exploits/48796
- https://www.vulncheck.com/advisories/audio-playback-recorder-local-buffer-overfl
- https://www.exploit-db.com/exploits/48796
FAQ
What is CVE-2020-37013?
CVE-2020-37013 is a vulnerability with a CVSS score of 8.4 (HIGH). Audio Playback Recorder 3.2.2 contains a local buffer overflow vulnerability in the eject and registration parameters that allows attackers to execute arbitrary code. Attackers can craft malicious pay...
How severe is CVE-2020-37013?
CVE-2020-37013 has been rated HIGH with a CVSS base score of 8.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-37013?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.