CVE-2011-0500 Information

Description

Buffer overflow in VideoSpirit Pro 1.6.8.1 1.68 and earlier; and VideoSpirit Lite 1.4.0.1 and possibly other versions; allows user-assisted remote attackers to execute arbitrary code via a VideoSpirit project (.visprj) file containing a valitem element with a long \value\ attribute as demonstrated using a valitem with the mp3 name.

Reference

http://secunia.com/advisories/42866 http://secunia.com/advisories/42876 http://www.exploit-db.com/exploits/15936