VYPR

AVI DivX MPEG to DVD Converter

by Allok

CVEs (6)

  • CVE-2020-37183CriFeb 11, 2026
    risk 0.64cvss 9.8epss 0.00

    Allok RM RMVB to AVI MPEG DVD Converter 3.6.1217 contains a stack overflow vulnerability that allows attackers to execute arbitrary code by overwriting Structured Exception Handler (SEH) registers. Attackers can craft a malicious payload in the License Name input field to…

  • CVE-2018-25323HigMay 17, 2026
    risk 0.55cvss 8.4epss 0.00

    Allok AVI DivX MPEG to DVD Converter 2.6.1217 contains a structured exception handler buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying a malicious payload. Attackers can craft a text file with a specially crafted buffer containing…

  • CVE-2018-25314HigApr 29, 2026
    risk 0.55cvss 8.4epss 0.00

    Allok soft WMV to AVI MPEG DVD WMV Converter 4.6.1217 contains a buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying an oversized string in the License Name field. Attackers can craft a malicious input containing shellcode with…

  • CVE-2018-25302HigApr 29, 2026
    risk 0.51cvss 7.8epss 0.00

    Allok AVI to DVD SVCD VCD Converter 4.0.1217 contains a structured exception handling (SEH) based buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying a malicious string in the License Name field. Attackers can craft a payload with…

  • CVE-2019-25363Feb 18, 2026
    risk 0.00cvss epss 0.00

    WMV to AVI MPEG DVD WMV Convertor 4.6.1217 contains a buffer overflow vulnerability that allows attackers to crash the application by providing an oversized license input. Attackers can generate a 6000-byte payload and paste it into the 'License Name and License Code' field to…

  • CVE-2019-25362Feb 18, 2026
    risk 0.00cvss epss 0.01

    WMV to AVI MPEG DVD WMV Convertor 4.6.1217 contains a buffer overflow vulnerability that allows attackers to execute arbitrary code by overwriting the license name and license code fields. Attackers can craft a malicious payload of 6000 bytes to trigger a bind shell on port 4444…