Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveFlexeraCVE-2012-0270
HistoryFeb 17, 2014 - 4:55 p.m.

CVE-2012-0270

2014-02-1716:55:07
CWE-119
flexera
web.nvd.nist.gov
29
cve-2012-0270
stack-based buffer overflows
csound
remote code execution
nvd

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.6

Confidence

Low

EPSS

0.945

Percentile

99.2%

JSON

Multiple stack-based buffer overflows in Csound before 5.16.6 allow remote attackers to execute arbitrary code via a crafted (1) hetro file to the getnum function in util/heti_main.c or (2) PVOC file to the getnum function in util/pv_import.c.

Affected configurations

Nvd
Node
csoundscsoundRange5.16.1
OR
csoundscsoundMatch5.12.4
OR
csoundscsoundMatch5.13.0
OR
csoundscsoundMatch5.13.1
OR
csoundscsoundMatch5.14.0
OR
csoundscsoundMatch5.14.1
OR
csoundscsoundMatch5.14.2
OR
csoundscsoundMatch5.15.0
OR
csoundscsoundMatch5.16
VendorProductVersionCPE
csoundscsound*cpe:2.3:a:csounds:csound:*:*:*:*:*:*:*:*
csoundscsound5.12.4cpe:2.3:a:csounds:csound:5.12.4:*:*:*:*:*:*:*
csoundscsound5.13.0cpe:2.3:a:csounds:csound:5.13.0:*:*:*:*:*:*:*
csoundscsound5.13.1cpe:2.3:a:csounds:csound:5.13.1:*:*:*:*:*:*:*
csoundscsound5.14.0cpe:2.3:a:csounds:csound:5.14.0:*:*:*:*:*:*:*
csoundscsound5.14.1cpe:2.3:a:csounds:csound:5.14.1:*:*:*:*:*:*:*
csoundscsound5.14.2cpe:2.3:a:csounds:csound:5.14.2:*:*:*:*:*:*:*
csoundscsound5.15.0cpe:2.3:a:csounds:csound:5.15.0:*:*:*:*:*:*:*
csoundscsound5.16cpe:2.3:a:csounds:csound:5.16:*:*:*:*:*:*:*

Related

exploitdb 1
suse 1
nvd 1
openvas 2
checkpoint_advisories 1
nessus 3
ubuntucve 1
prion 1
cvelist 1
metasploit 1
packetstorm 1
debiancve 1
zdt 1
osv 1
exploitdb
exploitdb
Csound - '.hetro' File Handling Stack Buffer Overflow (Metasploit)
2012-04-06 00:00:00
suse
suse
csound: fixed two stack based buffer overflows (important)
2012-02-28 19:08:16
nvd
nvd
CVE-2012-0270
2014-02-17 16:55:07
openvas
openvas
openSUSE: Security Advisory for csound (openSUSE-SU-2012:0315-1)
2012-08-02 00:00:00
SuSE Update for csound openSUSE-SU-2012:0315-1 (csound)
2012-08-02 00:00:00
checkpoint_advisories
checkpoint_advisories
Csound Hetro File Handling Stack Buffer Overflow (CVE-2012-0270)
2013-02-19 00:00:00
nessus
nessus
Csound getnum() getnum Function Multiple Buffer Overflows
2012-05-04 00:00:00
openSUSE Security Update : csound (openSUSE-SU-2012:0315-1)
2014-06-13 00:00:00
openSUSE Security Update : csound (openSUSE-SU-2012:0370-1)
2014-06-13 00:00:00
ubuntucve
ubuntucve
CVE-2012-0270
2014-02-17 00:00:00
prion
prion
Stack overflow
2014-02-17 16:55:00
cvelist
cvelist
CVE-2012-0270
2014-02-17 16:00:00
metasploit
metasploit
Csound hetro File Handling Stack Buffer Overflow
2012-04-05 20:35:42
packetstorm
packetstorm
Csound hetro File Handling Stack Buffer Overflow
2012-04-07 00:00:00
debiancve
debiancve
CVE-2012-0270
2014-02-17 16:55:07
zdt
zdt
Csound hetro File Handling Stack Buffer Overflow
2012-04-06 00:00:00
osv
osv
csound-5.18.02-7.10 on GA media
2024-06-15 00:00:00

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.6

Confidence

Low

EPSS

0.945

Percentile

99.2%

JSON
Related for CVE-2012-0270
exploitdb1suse1nvd1openvas2checkpoint_advisories1nessus3ubuntucve1prion1cvelist1metasploit1packetstorm1debiancve1zdt1osv1