A critical buffer overflow vulnerability in WMV to AVI MPEG DVD WMV Convertor allows attackers to execute arbitrary code and gain remote access via a bind shell.

The application fails to properly validate the length of input in the license name and license code fields. By providing a 6000-byte payload, an unauthenticated attacker can trigger a stack-based buffer overflow to gain remote code execution.

Exploitation allows for the deployment of a bind shell on port 4444, providing the attacker with direct command-line access to the affected system. With a CVSS score of 9.8, this vulnerability poses a severe risk to data integrity and system security, potentially leading to unauthorized data exfiltration or malware installation.

Immediate Action: Discontinue use of the affected software version and update to the latest available release from the vendor.

Proactive Monitoring: Monitor for unexpected listening ports, specifically TCP port 4444, and review system logs for application crashes related to the converter software.

Compensating Controls: Use host-based intrusion prevention systems (HIPS) to block unauthorized bind shells and restrict the application's ability to interact with sensitive system memory.

Public Exploit Available: No

This vulnerability represents a classic but highly effective attack vector for remote system compromise. IT administrators should immediately identify any instances of this software in their environment and apply the necessary updates or decommission the software to prevent exploitation.