CVE-2008-3182

Published: Jul 15, 2008Modified: Apr 23, 2026

9.3

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Exploitability: 8.6 / Impact: 10.0

Source: NVD

Description

Stack-based buffer overflow in DAP.exe in Download Accelerator Plus (DAP) 7.0.1.3, 8.6.6.3, and other 8.x versions allows user-assisted remote attackers to execute arbitrary code via an M3U (.m3u) file containing a long MP3 URL.

Affected (3)

Products: Speedbit: Download Accelerator Plus

Speedbit

1 product

Download Accelerator Plus

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
Speedbit Download Accelerator Plus	Version 7.0.1.3
Speedbit Download Accelerator Plus	Version 8.6.6.3
Speedbit Download Accelerator Plus	Version 8

Related CWEs

CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

References (14)

http://secunia.com/advisories/30997

Source: cve@mitre.org

Vendor Advisory

http://securityreason.com/securityalert/3997

Source: cve@mitre.org

http://www.securityfocus.com/bid/30138

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2008/2027/references

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/43674

Source: cve@mitre.org

https://www.exploit-db.com/exploits/6030

Source: cve@mitre.org

https://www.exploit-db.com/exploits/6039

Source: cve@mitre.org

http://secunia.com/advisories/30997