Lucene search

[email protected]CVE-2010-2348

HistoryJun 21, 2010 - 7:30 p.m.

CVE-2010-2348

2010-06-2119:30:02

CWE-119

[email protected]

web.nvd.nist.gov

cve-2010-2348

buffer overflow

batch audio converter

wav file

security vulnerability

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

8.3 High

AI Score

Confidence

High

0.084 Low

EPSS

Percentile

94.5%

JSON

Stack-based buffer overflow in Batch Audio Converter Lite Edition 1.0.0.0 and earlier allows remote attackers to execute arbitrary code via a long line in a .WAV file.

Affected configurations

NVD

Node

freesoftwaretoolboxbatch_audio_converterRange≤1.0.0.0lite

CPENameOperatorVersion
freesoftwaretoolbox:batch_audio_converterfreesoftwaretoolbox batch audio converterle1.0.0.0

CPE	Name	Operator	Version
freesoftwaretoolbox:batch_audio_converter	freesoftwaretoolbox batch audio converter	le	1.0.0.0

References

secunia.com/advisories/40254

www.exploit-db.com/exploits/13909

www.securityfocus.com/bid/40940

exchange.xforce.ibmcloud.com/vulnerabilities/59526

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

8.3 High

AI Score

Confidence

High

0.084 Low

EPSS

Percentile

94.5%

JSON

Related for CVE-2010-2348

nvd1 cvelist1 prion1