Critical severity9.8NVD Advisory· Published Jan 29, 2026· Updated Apr 15, 2026

CVE-2020-37000

Description

Free MP3 CD Ripper 2.8 contains a stack buffer overflow vulnerability that allows remote attackers to execute arbitrary code by crafting a malicious WAV file with oversized payload. Attackers can leverage a specially crafted exploit file with shellcode, SEH bypass, and egghunter technique to achieve remote code execution on vulnerable Windows systems.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.cleanersoft.comnvd
www.exploit-db.com/exploits/48696nvd
www.vulncheck.com/advisories/free-mp-cd-ripper-stack-buffer-overflow-seh-egghunternvd

News mentions

No linked articles in our index yet.

cvss	0.637
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000