CVE-2021-47775
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2026-01-15

Last updated on: 2026-01-15

Assigner: VulnCheck

Description
YouTube Video Grabber, now referred to as YouTube Downloader, 1.9.9.1 contains a buffer overflow vulnerability that allows attackers to execute arbitrary code by overwriting the Structured Exception Handler. Attackers can craft a malicious payload of 712 bytes with SEH manipulation to trigger a bind shell connection on a specified local port.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-01-15
Last Modified
2026-01-15
Generated
2026-06-16
AI Q&A
2026-01-16
EPSS Evaluated
2026-06-14
NVD
CVE-2021-47775
EUVD
EUVD-2026-2763
Affected Vendors & Products
Showing 2 associated CPEs
Vendor Product Version / Range
litexmedia youtube_downloader 3.9.9.92
litexmedia youtube_video_grabber 1.9.9.1
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-787 The product writes data past the end, or before the beginning, of the intended buffer.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability is a buffer overflow in YouTube Video Grabber (version 1.9.9.1) that allows an attacker to overwrite the Structured Exception Handler (SEH). By crafting a malicious payload of 712 bytes with SEH manipulation, an attacker can execute arbitrary code locally. This exploit enables the attacker to trigger a bind shell connection on a specified local port, effectively gaining control over the affected system through the vulnerable application. [2]

Impact Analysis

The vulnerability can allow an attacker to execute arbitrary code on your system by exploiting the buffer overflow in YouTube Video Grabber. This can lead to a local bind shell being opened on your machine, which an attacker can connect to and control remotely. This means the attacker could potentially escalate privileges, execute malicious commands, or take over the affected system through the vulnerable software. [2]

Detection Guidance

This vulnerability can be detected by monitoring for the presence of the malicious payload usage or the bind shell connection on the specified local port (default port 3110). On the affected system, you can check for unusual listening ports using commands like 'netstat -an | findstr 3110' on Windows to detect if the bind shell is active. Additionally, inspecting the input fields of YouTube Video Grabber for suspicious or unusually long input (such as the crafted payload) may help. Since the exploit involves opening a bind shell on port 3110, network monitoring tools can alert on inbound connections to this port. There is no direct signature-based detection command provided, but monitoring for the bind shell port and unusual application behavior is recommended. [2]

Mitigation Strategies

Immediate mitigation steps include: 1) Avoid using YouTube Video Grabber version 1.9.9.1 or upgrade to a later, patched version if available. 2) Restrict local access to the application to trusted users only, as the exploit requires local interaction. 3) Monitor and block inbound connections on the bind shell port (3110) using firewall rules. 4) Educate users not to paste untrusted or suspicious codes into the 'Name and Serial Nummer' input field of the application. 5) If possible, remove or disable the vulnerable application until a fix is applied. [2]

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2021-47775. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart