The specific flaw exists within qcpfformat.dll, which is responsible for parsing QCP media files. The process creates a static 256 byte allocation on the heap and trusts a user-supplied counter from the file within a memory copy loop.

Free CD to MP3 Converter by Eusing Software contains a buffer prone to exploitation via a specially crafted WAV file.

The vulnerability exists within the way Quicktime handles the PnSize

PICT opcode. It converts an unsigned 16 bit value into a signed 32 bit

value, this is later used as the size parameter for a memory copy

function that copies from the file onto the stack. The results in a

stack based buffer overflow that allows for remote code execution under

the context of the current user.

The vulnerability is caused due to a boundary error in Audio Converter when handling .PLS files. This can be exploited to cause a stack-based buffer overflow via a specially crafted .PLS file.

This module exploits a stack-based buffer overflow in Word Builder which is triggered by a malformed DIC file.

Webkit, as used in Apple Safari before 5.06 is prone to a memory corruption vulnerability caused by a web site with a crafted SVG graphic. This allows remote attackers to execute arbitrary code.

This module exploits an arbitrary file download and execute vulnerability in the LaunchObj ActiveX Control included in Symantec AppStream Client.

This update fixes an issue in the agent connector.

This module exploits a buffer overflow vulnerability in Lotus Notes when parsing a malformed, specially crafted LZH file received as an email attachment.

This module exploits a vulnerability in FreeAmp. The buffer overflow is triggered when a specially crafted theme file is opened.

This module exploits a buffer overflow vulnerability in The KMPplayer when parsing a malformed, specially crafted .MP3 file.