CVE-2020-21724

Опубликовано: 22 авг. 2023

Источник: nvd

CVSS3: 7.8

EPSS Низкий

Описание

Buffer Overflow vulnerability in ExtractorInformation function in streamExtractor.cpp in oggvideotools 0.9.1 allows remaote attackers to run arbitrary code via opening of crafted ogg file.

Ссылки

https://github.com/xiaoxiongwang/security/tree/master/oggvideotools#segv-and-heap-overflow-detected-in-line-17-of-streamextractorcpp
Broken Link
https://sourceforge.net/p/oggvideotools/bugs/9/
Exploit
Third Party Advisory
https://github.com/xiaoxiongwang/security/tree/master/oggvideotools#segv-and-heap-overflow-detected-in-line-17-of-streamextractorcpp
Broken Link
https://sourceforge.net/p/oggvideotools/bugs/9/
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:ogg_video_tools_project:ogg_video_tools:0.9.1:*:*:*:*:*:*:*

EPSS

Процентиль: 13%

0.00044

Низкий

7.8 High

CVSS3

Дефекты

CWE-787

Связанные уязвимости

CVE-2020-21724

CVSS3: 7.8

ubuntu

больше 2 лет назад

Buffer Overflow vulnerability in ExtractorInformation function in streamExtractor.cpp in oggvideotools 0.9.1 allows remaote attackers to run arbitrary code via opening of crafted ogg file.

CVE-2020-21724

CVSS3: 7.8

debian

больше 2 лет назад

Buffer Overflow vulnerability in ExtractorInformation function in stre ...

GHSA-9xrw-jw42-5xfw

CVSS3: 7.8

github

больше 2 лет назад

Buffer Overflow vulnerability in ExtractorInformation function in streamExtractor.cpp in oggvideotools 0.9.1 allows remaote attackers to run arbitrary code via opening of crafted ogg file.

EPSS

Процентиль: 13%

0.00044

Низкий

7.8 High

CVSS3

Дефекты

CWE-787