CVE-2007-0018

Published: Jan 24, 2007Modified: Apr 23, 2026

9.3

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Exploitability: 8.6 / Impact: 10.0

Source: NVD

Description

Stack-based buffer overflow in the NCTAudioFile2.AudioFile ActiveX control (NCTAudioFile2.dll), as used by multiple products, allows remote attackers to execute arbitrary code via a long argument to the SetFormatLikeSample function. NOTE: the products include (1) NCTsoft NCTAudioStudio, NCTAudioEditor, and NCTDialogicVoice; (2) Magic Audio Recorder, Music Editor, and Audio Converter; (3) Aurora Media Workshop; DB Audio Mixer And Editor; (4) J. Hepple Products including Fx Audio Editor and others; (5) EXPStudio Audio Editor; (6) iMesh; (7) Quikscribe; (8) RMBSoft AudioConvert and SoundEdit Pro 2.1; (9) CDBurnerXP; (10) Code-it Software Wave MP3 Editor and aBasic Editor; (11) Movavi VideoMessage, DVD to iPod, and others; (12) SoftDiv Software Dexster, iVideoMAX, and others; (13) Sienzo Digital Music Mentor (DMM); (14) MP3 Normalizer; (15) Roemer Software FREE and Easy Hi-Q Recorder, and Easy Hi-Q Converter; (16) Audio Edit Magic; (17) Joshua Video and Audio Converter; (18) Virtual CD; (19) Cheetah CD and DVD Burner; (20) Mystik Media AudioEdit Deluxe, Blaze Media, and others; (21) Power Audio Editor; (22) DanDans Digital Media Full Audio Converter, Music Editing Master, and others; (23) Xrlly Software Text to Speech Makerand Arial Sound Recorder / Audio Converter; (24) Absolute Sound Recorder, Video to Audio Converter, and MP3 Splitter; (25) Easy Ringtone Maker; (26) RecordNRip; (27) McFunSoft iPod Audio Studio, Audio Recorder for Free, and others; (28) MP3 WAV Converter; (29) BearShare 6.0.2.26789; and (30) Oracle Siebel SimBuilder and CRM 7.x.

Affected (83)

Products: Altdo: Convert Mp3 Master, Mp3 Record And Edit Audio Master · Americanshareware: Mp3 Wav Converter · Audio Edit Magic: Audio Edit Magic · +30 more

Show all products

Altdo: Convert Mp3 Master, Mp3 Record And Edit Audio Master · Americanshareware: Mp3 Wav Converter · Audio Edit Magic: Audio Edit Magic · Bearshare: Bearshare · Cdburnerxp: Cdburnerxp Pro · Cheetahburner: Cheetah Cd Burner, Cheetah Dvd Burner · Code It Softare: Abasic Editor, Wave Mp3 Editor · Dandans Digital Media Products: Easy Audio Editor, Full Audio Converter, Music Editing Master, Visual Video Converter · Digital Borneo: Audio Mixer And Editor · Easy Ringtone Maker: Easy Ringtone Maker · Expstudio: Audio Editor · Iaudiosoft.com: Absolute Mp3 Splitter, Absolute Sound Recorder, Absolute Video To Audio Converter · Imesh.com: Imesh · J Hepple Products: Fx Audio Concat, Fx Audio Editor, Fx Audio Tools, Fx Magic Music, Fx Movie Joiner, Fx Movie Joiner And Splitter, Fx Movie Splitter, Fx New Sound, Fx Video Converter · Joshua Mediasoft: Audio Convertor Plus, Video Converter Plus · Magicvideosoftare: Magic Audio Converter, Magic Audio Recorder, Magic Music Editor · Mcfunsoft: Audio Editor, Audio Recorder For Free, Audio Studio, Ipod Audio Studio, Ipod Music Converter, Recording To Ipod Solution · Mediatox: Aurora Media Workshop · Movavi: Chiliburner, Convertmovie, Dvd To Ipod, Splitmovie, Suite, Videomessage · Mp3 Soft: Mp3 Normalizer · Mystik Media Products: Audioedit Deluxe, Blaze Media Pro, Blaze Mediaconvert, Contextconvert Pro · Nctsoft Products: Nctaudioeditor, Nctaudiofile2, Nctaudiostudio, Nctdialogicvoice · Nextlevel Systems: Audio Editor Gold, Audio Studio Gold · Quikscribe: Quikscribe Player, Quikscribe Recorder · Recordnrip: Recordnrip · Rmbsoft: Audioconvert, Soundedit Pro · Roemer Software: Easy Hi Q Converter, Easy Hi Q Recorder, Free Hi Q Recorder · Sienzo: Digital Music Mentor · Smart Media Systems: Power Audio Editor · Softdiv Softare: Dexster, Ivideomax, Mp3 To Wav Converter, Snosh, Videozilla · Virtual Cd: Virtual Cd, Virtual Cd File Server · Xrlly Software: Arial Audio Converter, Arial Sound Recorder, Text To Speech Maker · Xwaver.com: Magic Audio Editor Pro, Magic Music Studio Pro

Altdo

2 products

Convert Mp3 Master

Mp3 Record And Edit Audio Master

1 product

1 product

1 product

1 product

2 products

2 products

Dandans Digital Media Products

4 products

Easy Audio Editor

Full Audio Converter

Music Editing Master

Visual Video Converter

Digital Borneo

1 product

Audio Mixer And Editor

1 product

1 product

3 products

Absolute Mp3 Splitter

Absolute Sound Recorder

Absolute Video To Audio Converter

1 product

9 products

Fx Movie Joiner And Splitter

2 products

3 products

Magic Audio Converter

6 products

Audio Recorder For Free

Audio Studio

Ipod Audio Studio

Ipod Music Converter

Recording To Ipod Solution

Mediatox

1 product

Aurora Media Workshop

6 products

1 product

Mystik Media Products

4 products

4 products

2 products

2 products

1 product

2 products

3 products

1 product

1 product

5 products

2 products

Virtual Cd File Server

Xrlly Software

3 products

Arial Audio Converter

Arial Sound Recorder

Text To Speech Maker

Xwaver.com

2 products

Magic Audio Editor Pro

Magic Music Studio Pro

Configuration A

83 vulnerable

Vulnerable Software	Affected Versions
Altdo Convert Mp3 Master	Version 1.1
Altdo Mp3 Record And Edit Audio Master	Version 1.2
Americanshareware Mp3 Wav Converter	Version 3.1.8
Audio Edit Magic Audio Edit Magic	Version 9.2.3_389
Bearshare Bearshare	Version 6.0.2.26789
Cdburnerxp Cdburnerxp Pro	Version 3.0.116
Cheetahburner Cheetah Cd Burner	Version 3.56
Cheetahburner Cheetah Dvd Burner	Version 1.79
Code It Softare Abasic Editor	Version 10.1
Code It Softare Wave Mp3 Editor	Version 10.1
Dandans Digital Media Products Easy Audio Editor	Version 7.4
Dandans Digital Media Products Full Audio Converter	Version 4.2
Dandans Digital Media Products Music Editing Master	Version 5.2
Dandans Digital Media Products Visual Video Converter	Version 4.4
Digital Borneo Audio Mixer And Editor	Version 1.1.0
Easy Ringtone Maker Easy Ringtone Maker	Version 2.0.5
Expstudio Audio Editor	Version 4.0.2
Iaudiosoft.com Absolute Mp3 Splitter	Version 2.5.4
Iaudiosoft.com Absolute Sound Recorder	Version 3.4.5
Iaudiosoft.com Absolute Video To Audio Converter	Version 2.7.9
Imesh.com Imesh	Version 7.0.2.26789
J Hepple Products Fx Audio Concat	Version 1.2.0_beta
J Hepple Products Fx Audio Editor	Version 4.7.11
J Hepple Products Fx Audio Tools	Version 7.3.4
J Hepple Products Fx Magic Music	Version 5.7.7
J Hepple Products Fx Movie Joiner	Version 6.2.8
J Hepple Products Fx Movie Joiner And Splitter	Version 6.2.8
J Hepple Products Fx Movie Splitter	Version 6.4.7
J Hepple Products Fx New Sound	Version 5.1.1
J Hepple Products Fx Video Converter	Version 7.51.21
Joshua Mediasoft Audio Convertor Plus	Version 2.2
Joshua Mediasoft Video Converter Plus	Version 3.01
Magicvideosoftare Magic Audio Converter	Version 8.2.6_build_719
Magicvideosoftare Magic Audio Recorder	Version 5.3.7
Magicvideosoftare Magic Music Editor	Version 5.2.2
Mcfunsoft Audio Editor	Version 6.3.3_build_489
Mcfunsoft Audio Recorder For Free	Version 6.1
Mcfunsoft Audio Studio	Version 6.6.3_build_479
Mcfunsoft Ipod Audio Studio	Version 6.2.4
Mcfunsoft Ipod Music Converter	Version 5.1
Mcfunsoft Recording To Ipod Solution	Version 5.1
Mediatox Aurora Media Workshop	Version 3.3.25
Movavi Chiliburner	Version 2.3
Movavi Convertmovie	Version 4.4
Movavi Dvd To Ipod	Version 1.0
Movavi Splitmovie	Version 1.4
Movavi Suite	Version 3.5
Movavi Videomessage	Version 1.0
Mp3 Soft Mp3 Normalizer	Version 1.03
Mystik Media Products Audioedit Deluxe	Version 4.10
Mystik Media Products Blaze Media Pro	Version 7.0
Mystik Media Products Blaze Mediaconvert	Version 3.4
Mystik Media Products Contextconvert Pro	Version 3.1
Nctsoft Products Nctaudioeditor	Version 2.7.1
Nctsoft Products Nctaudiofile2	All versions
Nctsoft Products Nctaudiostudio	Version 2.7.1
Nctsoft Products Nctdialogicvoice	Version 2.7.1
Nextlevel Systems Audio Editor Gold	Version 9.2.5_build_424
Nextlevel Systems Audio Studio Gold	Version 7.0.1.1_build_500
Quikscribe Quikscribe Player	Version 5.022.05
Quikscribe Quikscribe Recorder	Version 5.021.29
Recordnrip Recordnrip	Version 1.0
Rmbsoft Audioconvert	Version 3.1.0.125
Rmbsoft Soundedit Pro	Version 2.1
Roemer Software Easy Hi Q Converter	Version 1.7
Roemer Software Easy Hi Q Recorder	Version 2.0
Roemer Software Free Hi Q Recorder	Version 1.9
Sienzo Digital Music Mentor	Version 2.6.0.3
Smart Media Systems Power Audio Editor	Version 11.0.1
Softdiv Softare Dexster	Version 3.0
Softdiv Softare Ivideomax	Version 3.9
Softdiv Softare Mp3 To Wav Converter	Version 3.0
Softdiv Softare Snosh	Version 1.4
Softdiv Softare Videozilla	Version 2.5
Virtual Cd Virtual Cd	Version 6.0.0.7
Virtual Cd Virtual Cd	Version 7.1.0.2
Virtual Cd Virtual Cd	Version 8.0.0.6
Virtual Cd Virtual Cd File Server	Version 7.1.0.3
Xrlly Software Arial Audio Converter	Version 2.3.40
Xrlly Software Arial Sound Recorder	Version 1.4.3
Xrlly Software Text To Speech Maker	Version 1.3.8
Xwaver.com Magic Audio Editor Pro	Version 10.3.1_build_476
Xwaver.com Magic Music Studio Pro	Version 7.0.2.1_build_500

Related CWEs

CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.