exploitDog

GHSA-mcxg-xvqr-5m3p

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Stack-based buffer overflow in the local__vcentry_parse_value function in vorbiscomment.c in flac123 (aka flac-tools or flac) before 0.0.10 allows user-assisted remote attackers to execute arbitrary code via a large comment value_length.

Stack-based buffer overflow in the local__vcentry_parse_value function in vorbiscomment.c in flac123 (aka flac-tools or flac) before 0.0.10 allows user-assisted remote attackers to execute arbitrary code via a large comment value_length.

Ссылки

EPSS

Процентиль: 91%

0.06667

Низкий

CVE ID

Связанные уязвимости

CVE-2007-3507

ubuntu

больше 18 лет назад

Stack-based buffer overflow in the local__vcentry_parse_value function in vorbiscomment.c in flac123 (aka flac-tools or flac) before 0.0.10 allows user-assisted remote attackers to execute arbitrary code via a large comment value_length.

CVE-2007-3507

nvd

больше 18 лет назад

Stack-based buffer overflow in the local__vcentry_parse_value function in vorbiscomment.c in flac123 (aka flac-tools or flac) before 0.0.10 allows user-assisted remote attackers to execute arbitrary code via a large comment value_length.

CVE-2007-3507

debian

больше 18 лет назад

Stack-based buffer overflow in the local__vcentry_parse_value function ...

EPSS

Процентиль: 91%

0.06667

Низкий

CVE ID