Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
8.4
WMV to AVI MPEG DVD WMV Convertor Crashes from Oversized License Input
CVE-2019-25363
Summary
The WMV to AVI MPEG DVD WMV Convertor is prone to crashing if an attacker enters an extremely long string in the license field. This could be used to disrupt the application and potentially gain unauthorized access. Update to the latest version to prevent crashes.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| alloksoft | wmv_to_avi_mpeg_dvd_wmv_convertor | 4.6.1217 | – |
Original title
WMV to AVI MPEG DVD WMV Convertor 4.6.1217 contains a buffer overflow vulnerability that allows attackers to crash the application by providing an oversized license input. Attackers can generate a ...
Original description
WMV to AVI MPEG DVD WMV Convertor 4.6.1217 contains a buffer overflow vulnerability that allows attackers to crash the application by providing an oversized license input. Attackers can generate a 6000-byte payload and paste it into the 'License Name and License Code' field to trigger an application crash.
nvd CVSS3.1
7.5
nvd CVSS4.0
8.4
Vulnerability type
CWE-121
Stack-based Buffer Overflow
- https://web.archive.org/web/20190108145533/https://www.alloksoft.com/wmv.htm Product
- https://www.alloksoft.com/ Not Applicable Technical Description
- https://www.exploit-db.com/exploits/47563 Exploit VDB Entry
- https://www.vulncheck.com/advisories/wmv-to-avi-mpeg-dvd-wmv-convertor-denial-of... Third Party Advisory
Published: 18 Feb 2026 · Updated: 11 Mar 2026 · First seen: 6 Mar 2026