CVE-2008-1423

2008-05-16T12:54:00
ID CVE-2008-1423
Type cve
Reporter cve@mitre.org
Modified 2017-09-29T01:30:00

Description

Integer overflow in a certain quantvals and quantlist calculation in Xiph.org libvorbis 1.2.0 and earlier allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted OGG file with a large virtual space for its codebook, which triggers a heap overflow.