Lucene search
HistoryOct 28, 2013 - 10:55 p.m.
CVE-2012-6303
cve-2012-6303
heap-based buffer overflow
getwavheader
snack sound toolkit
wavesurfer
denial of service
remote code execution
nvd
7.8 High
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.038 Low
EPSS
Percentile
91.7%
Heap-based buffer overflow in the GetWavHeader function in generic/jkSoundFile.c in the Snack Sound Toolkit, as used in WaveSurfer 1.8.8p4, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large chunk size in a WAV file.
Related
nessus
nessus
Fedora 18 : tcl-snack-2.2.10-17.fc18 (2013-0083)
2013-01-14 00:00:00
Fedora 17 : tcl-snack-2.2.10-17.fc17 (2013-0098)
2013-01-14 00:00:00
openSUSE Security Update : snack (openSUSE-2015-183)
2015-02-27 00:00:00
suse
suse
Security update for snack (important)
2017-11-15 15:06:54
Security update for snack (important)
2015-02-26 11:04:48
openvas
openvas
Gentoo Security Advisory GLSA 201309-04
2015-09-29 00:00:00
Fedora Update for tcl-snack FEDORA-2013-0110
2013-01-15 00:00:00
Fedora Update for tcl-snack FEDORA-2013-0098
2013-01-15 00:00:00
fedora
fedora
[SECURITY] Fedora 18 Update: tcl-snack-2.2.10-17.fc18
2013-01-12 00:41:10
[SECURITY] Fedora 17 Update: tcl-snack-2.2.10-17.fc17
2013-01-12 15:10:08
[SECURITY] Fedora 16 Update: tcl-snack-2.2.10-17.fc16
2013-01-12 15:19:59
ubuntucve
ubuntucve
CVE-2012-6303
2013-10-28 00:00:00
prion
prion
Heap overflow
2013-10-28 22:55:00
debiancve
debiancve
CVE-2012-6303
2013-10-28 22:55:00
gentoo
gentoo
Snack: User-assisted execution of arbitrary code
2013-09-11 00:00:00
7.8 High
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.038 Low
EPSS
Percentile
91.7%
Related for CVE-2012-6303