CVE-2024-53310

A Structured Exception Handler based buffer overflow vulnerability exists in Effectmatrix Total Video Converter Command Line (TVCC) 2.50 when a specially crafted file is passed to the -ff parameter. The vulnerability occurs due to improper handling of file input with overly long characters, leading to memory corruption. This can result in arbitrary code execution or denial of service.

CVSS v3 5.5 MEDIUM

5.5^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 2.1 / Impact : 3.4

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction REQUIRED

Confidentiality Impact LOW

Integrity Impact LOW

Availability Impact LOW

Scope UNCHANGED

References

Link	Resource
https://github.com/ufist/vulnerability-research/blob/main/CVE-2024-53310/CVE-2024-53310.md

Configurations

No configuration.

History

19 Mar 2025, 19:15

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 5.5
CWE		CWE-122
Summary		(es) Existe una vulnerabilidad de desbordamiento de búfer basada en el controlador de excepciones estructurado en Effectmatrix Total Video Converter Command Line (TVCC) 2.50 cuando se pasa un archivo especialmente manipulado al parámetro -ff. La vulnerabilidad se produce debido a una gestión inadecuada de la entrada de archivos con caracteres demasiado largos, lo que provoca la corrupción de la memoria. Esto puede provocar la ejecución de código arbitrario o la denegación de servicio.

13 Feb 2025, 23:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-02-13 23:15

Updated : 2025-03-19 19:15

NVD link : CVE-2024-53310

Mitre link : CVE-2024-53310

CVE.ORG link : CVE-2024-53310

JSON object : View

Products Affected

No product.

CWE

CWE-122

Heap-based Buffer Overflow

5.5 /10