Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2007-4619

Опубликовано: 12 окт. 2007
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 9.3

Описание

Multiple integer overflows in Free Lossless Audio Codec (FLAC) libFLAC before 1.2.1, as used in Winamp before 5.5 and other products, allow user-assisted remote attackers to execute arbitrary code via a malformed FLAC file that triggers improper memory allocation, resulting in a heap-based buffer overflow.

РелизСтатусПримечание
dapper

released

1.1.2-3ubuntu1.1
devel

released

1.1.4-3ubuntu1.1
edgy

released

1.1.2-5ubuntu1.1
feisty

released

1.1.2-5ubuntu2.1
gutsy

released

1.1.4-3ubuntu1.1
upstream

released

1.2.1

Показывать по

РелизСтатусПримечание
dapper

not-affected

devel

not-affected

edgy

not-affected

feisty

not-affected

gutsy

not-affected

upstream

needs-triage

Показывать по

Ссылки на источники

EPSS

Процентиль: 90%
0.06237
Низкий

9.3 Critical

CVSS2

Связанные уязвимости

redhat логотип

CVE-2007-4619

redhat
больше 17 лет назад

Multiple integer overflows in Free Lossless Audio Codec (FLAC) libFLAC before 1.2.1, as used in Winamp before 5.5 and other products, allow user-assisted remote attackers to execute arbitrary code via a malformed FLAC file that triggers improper memory allocation, resulting in a heap-based buffer overflow.

nvd логотип

CVE-2007-4619

nvd
больше 17 лет назад

Multiple integer overflows in Free Lossless Audio Codec (FLAC) libFLAC before 1.2.1, as used in Winamp before 5.5 and other products, allow user-assisted remote attackers to execute arbitrary code via a malformed FLAC file that triggers improper memory allocation, resulting in a heap-based buffer overflow.

debian логотип

CVE-2007-4619

debian
больше 17 лет назад

Multiple integer overflows in Free Lossless Audio Codec (FLAC) libFLAC ...

github логотип

GHSA-26g4-r5qf-54qp

github
около 3 лет назад

Multiple integer overflows in Free Lossless Audio Codec (FLAC) libFLAC before 1.2.1, as used in Winamp before 5.5 and other products, allow user-assisted remote attackers to execute arbitrary code via a malformed FLAC file that triggers improper memory allocation, resulting in a heap-based buffer overflow.

fstec логотип

BDU:2015-09600

fstec
больше 17 лет назад

Уязвимость операционной системы Gentoo Linux, позволяющая удаленному злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации

EPSS

Процентиль: 90%
0.06237
Низкий

9.3 Critical

CVSS2