Audio File Library 0.2.6 - libaudiofile 'msadpcm.c' WAV File Processing Buffer Overflow Vulnerability

2008-12-30T00:00:00
ID EDB-ID:32691
Type exploitdb
Reporter Anton Khirnov
Modified 2008-12-30T00:00:00

Description

Audio File Library 0.2.6 (libaudiofile) 'msadpcm.c' WAV File Processing Buffer Overflow Vulnerability. CVE-2008-5824. Remote exploit for linux platform

                                        
                                            source: http://www.securityfocus.com/bid/33066/info

Audio File Library ('libaudiofile') is prone to a heap-based buffer-overflow vulnerability because it fails to properly bounds-check user-supplied data.

An attacker can exploit this issue to execute arbitrary machine code in the context of applications using the vulnerable library. Failed exploit attempts will likely cause denial-of-service conditions.

This issue affects libaudiofile 0.2.6; other versions may also be vulnerable. 

https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/sploits/32691.wav