CNNVD-202508-3660 Information

Aug 30, 2025 cve

CNNVD ID

CNNVD-202508-3660

CVE-2010-10017

  • CNNVD Published: 2025-08-30

Description (Chinese)

DC Mobile Studio WM Downloader是DC Mobile Studio公司的一款影片和图像下载器。 DC Mobile Studio WM Downloader 3.1.2.2版本存在安全漏洞,该漏洞源于处理.m3u文件时输入验证不足,可能导致缓冲区溢出和任意代码执行。

Description (English)

DC Mobile Studio WM Downloader is a video and image downloader for DC Mobile Studio. There is a security gap in version 3.1.2.2 of DC Mobile Studio WM Downloader, which results from inadequate input validation when processing.m3u documents, which may lead to a buffer zone spill and arbitrary code implementation.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

DC Mobile Studio

Published

2025-08-30

Last Modified

2026-02-24

References

https://www.vulncheck.com/advisories/wm-downloader-buffer-overflow-via-malformed-m3u-file https://www.fortiguard.com/encyclopedia/ips/24038/wm-downloader-buffer-overflow https://www.exploit-db.com/exploits/16642 https://www.exploit-db.com/exploits/14497 https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/windows/fileformat/wm_downloader_m3u.rb https://nvd.nist.gov/vuln/detail/CVE-2010-10017 https://access.redhat.com/security/cve/cve-2010-10017

Share on: