High severity7.8NVD Advisory· Published Sep 23, 2017· Updated May 13, 2026

CVE-2017-14627

Description

Stack-based buffer overflows in CyberLink LabelPrint 2.5 allow remote attackers to execute arbitrary code via the (1) author (inside the INFORMATION tag), (2) name (inside the INFORMATION tag), (3) artist (inside the TRACK tag), or (4) default (inside the TEXT tag) parameter in an lpp project file.

Affected products

Cyberlink/Labelprint
cpe:2.3:a:cyberlink:labelprint:2.5:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

blog.spentera.com/2017/09/19/unicode-stack-based-buffer-overflow-on-cyberlink-labelprint-2-5/nvdExploitTechnical DescriptionThird Party Advisory
www.exploit-db.com/exploits/42777/nvdExploitThird Party AdvisoryVDB Entry
www.exploit-db.com/exploits/45985/nvd

News mentions

No linked articles in our index yet.

cvss	0.507
epss	0.040
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000