Nero Products Insecure Library Loading Vulnerabilities
RISK: Medium Risk
Multiple vulnerabilities have been identified in Nero, which could be exploited by malicious people to compromise a user's system.
1. Due to certain bundled applications loading various libraries in an insecure manner. This can be exploited to load arbitrary libraries by tricking a user into e.g. opening a Nero CD Cover Document (.cdc) or Nero BackItUp Archive (.nba) located on a remote WebDAV or SMB share.
2. Due to certain bundled applications loading various libraries in an insecure manner and also including vulnerable versions of mfc71.dll and mfc71u.dll, which load libraries (e.g. mfc71enu.dll, mfc71loc.dll) in an insecure manner. This can be exploited to load arbitrary libraries by tricking a user into e.g. opening a Quicktime Movie (.mov), Windows Bitmap Image (.bmp), Nero CD Cover Document (.cdc), CUE Image (.cue), Nero BackItUp Archive (.nba), or Nero SoundTrax Project (.npf) located on a remote WebDAV or SMB share.
Successful exploitation allows execution of arbitrary code.
Impact
- Remote Code Execution
System / Technologies affected
- Nero CoverDesigner 3.3.3.0
- Nero BackItUp 3.5.4.0
- Nero ShowTime 3.10.1.0
- Nero PhotoSnap 1.2.0.25
- Nero PhotoSnap Viewer 1.2.0.25
- Nero CoverDesigner 2.10.1.1
- Nero Burning ROM 7.11.10.0
- Nero BackItUp 2.10.6.4
- Nero Vision 4.9.7.6
- Nero SoundTrax 2.10.1.0
Solutions
Note: There is no patch available for this vulnerability currently.
Vulnerability Identifier
- No CVE information is available
Source
Related Link
Share with