CVE-2003-0075

Опубликовано: 19 фев. 2003

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

Integer signedness error in the myFseek function of samplein.c for Blade encoder (BladeEnc) 0.94.2 and earlier allows remote attackers to execute arbitrary code via a negative offset value following a "fmt" wave chunk.

Ссылки

http://marc.info/?l=bugtraq&m=104428700106672&w=2
http://marc.info/?l=bugtraq&m=104446346127432&w=2
http://www.iss.net/security_center/static/11227.php
Vendor Advisory
http://www.pivx.com/luigi/adv/blade942-adv.txt
Exploit
Patch
Vendor Advisory
http://www.securityfocus.com/bid/6745
Exploit
Patch
Vendor Advisory
http://marc.info/?l=bugtraq&m=104428700106672&w=2
http://marc.info/?l=bugtraq&m=104446346127432&w=2
http://www.iss.net/security_center/static/11227.php
Vendor Advisory
http://www.pivx.com/luigi/adv/blade942-adv.txt
Exploit
Patch
Vendor Advisory
http://www.securityfocus.com/bid/6745
Exploit
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:bladeenc:bladeenc:0.92.7:*:*:*:*:*:*:*

cpe:2.3:a:bladeenc:bladeenc:0.93.10:*:*:*:*:*:*:*

cpe:2.3:a:bladeenc:bladeenc:0.94.0:*:*:*:*:*:*:*

cpe:2.3:a:bladeenc:bladeenc:0.94.1:*:*:*:*:*:*:*

cpe:2.3:a:bladeenc:bladeenc:0.94.2:*:*:*:*:*:*:*

EPSS

Процентиль: 87%

0.0356

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-vfjj-wr2x-w2ch

github

больше 3 лет назад