Описание
Free Lossless Audio Codec (FLAC) libFLAC before 1.2.1 allows user-assisted remote attackers to force a client to download arbitrary files via the MIME-Type URL flag (-->) for the FLAC image file in a crafted .FLAC file.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | not-affected | 1.1.2-3ubuntu1.1 |
| devel | not-affected | 1.2.1 |
| edgy | not-affected | 1.1.2-5ubuntu1.1 |
| feisty | not-affected | 1.1.2-5ubuntu2.1 |
| gutsy | released | 1.1.4-3ubuntu1.1 |
| upstream | released | 1.2.1 |
Показывать по
Ссылки на источники
EPSS
9.3 Critical
CVSS2
Связанные уязвимости
Free Lossless Audio Codec (FLAC) libFLAC before 1.2.1 allows user-assisted remote attackers to force a client to download arbitrary files via the MIME-Type URL flag (-->) for the FLAC image file in a crafted .FLAC file.
Free Lossless Audio Codec (FLAC) libFLAC before 1.2.1 allows user-assisted remote attackers to force a client to download arbitrary files via the MIME-Type URL flag (-->) for the FLAC image file in a crafted .FLAC file.
Free Lossless Audio Codec (FLAC) libFLAC before 1.2.1 allows user-assi ...
Free Lossless Audio Codec (FLAC) libFLAC before 1.2.1 allows user-assisted remote attackers to force a client to download arbitrary files via the MIME-Type URL flag (-->) for the FLAC image file in a crafted .FLAC file.
EPSS
9.3 Critical
CVSS2