Description
Free MP3 CD Ripper 2.8 contains a stack-based buffer overflow vulnerability in WMA file processing that allows local attackers to bypass DEP protection via structured exception handling manipulation. Attackers can craft a malicious WMA file that triggers the overflow when loaded through the Convert function, enabling execution of arbitrary code through ROP chain gadgets and shellcode injection.
Published: 2026-05-29
Score: 8.6 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

Free MP3 CD Ripper version 2.8 contains a stack-based buffer overflow in the processing of WMA files. A local attacker can craft a malicious WMA file that, when loaded through the Convert function, overflows the stack and manipulates Structured Exception Handling. This overflow allows the attacker to bypass DEP protection and execute arbitrary code via return‑oriented programming and shellcode injection.

Affected Systems

The vulnerability affects the Free MP3 CD Ripper software distributed by Commentcamarche, specifically version 2.8. No other vendors or product versions are listed as affected.

Risk and Exploitability

The CVSS score of 8.6 indicates a high severity vulnerability. Because there is no reported EPSS score and the vulnerability is not listed in the CISA KEV catalog, the likelihood of exploitation is uncertain, but the local attack surface and ability to achieve code execution suggest a considerable risk if the software is used in environments where untrusted WMA files may be processed. Attackers would need local access to the system running the application.

Generated by OpenCVE AI on May 29, 2026 at 17:25 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Obtain the latest supported version of Free MP3 CD Ripper or apply any vendor‑provided patch that addresses the buffer overflow in WMA processing
  • If an upgrade is unavailable, remove or disable the Convert functionality that processes WMA files, or replace the application with a more secure alternative
  • Configure Windows security settings to enforce DEP and additional memory protection features such as ASLR, and restrict execution permissions for the application's installation directory

Generated by OpenCVE AI on May 29, 2026 at 17:25 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 29 May 2026 18:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Fri, 29 May 2026 16:15:00 +0000

Type Values Removed Values Added
Description Free MP3 CD Ripper 2.8 contains a stack-based buffer overflow vulnerability in WMA file processing that allows local attackers to bypass DEP protection via structured exception handling manipulation. Attackers can craft a malicious WMA file that triggers the overflow when loaded through the Convert function, enabling execution of arbitrary code through ROP chain gadgets and shellcode injection.
Title Free MP3 CD Ripper 2.8 Buffer Overflow SEH DEP Bypass
Weaknesses CWE-121
References
Metrics cvssV3_1

{'score': 8.4, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}

cvssV4_0

{'score': 8.6, 'vector': 'CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N'}

Subscriptions

No data.

cve-icon MITRE

Status: PUBLISHED

Assigner: VulnCheck

Published:

Updated: 2026-05-29T17:26:02.012Z

Reserved: 2026-05-29T11:09:36.232Z

Link: CVE-2018-25383

cve-icon Vulnrichment

Updated: 2026-05-29T17:25:56.169Z

cve-icon NVD

Status : Deferred

Published: 2026-05-29T16:16:17.323

Modified: 2026-05-29T16:29:11.350

Link: CVE-2018-25383

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-29T17:30:04Z

Weaknesses