133 matches found
EUVD-2005-0612
Malware in sbrugna...
EUVD-2000-0013
Malware in sbrugna...
EUVD-2021-31115
Malicious code in bioql PyPI...
EUVD-2025-22465
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2017-11099
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - When SWFTools 0.9.2 processes a crafted file in wav2swf, it can lead to a Segmentation Violation in the wavconvert2mono function in lib/wav.c. CVE-2017-11099 No...
CVE-2025-47187
A vulnerability in the Mitel 6800 Series, 6900 Series, and 6900w Series SIP Phones through 6.4 SP4 R6.4.0.4006, and the 6970 Conference Unit through 6.4 SP4 R6.4.0.4006 or version V1 R0.1.0, could allow an unauthenticated attacker to perform a file upload attack due to missing authentication...
CVE-2025-47187
The vulnerability CVE-2025-47187 affects Mitel 6800 Series, Mitel 6900 Series, Mitel 6900w Series SIP Phones (up to 6.4 SP4 R6.4.0.4006) and the 6970 Conference Unit (up to 6.4 SP4 R6.4.0.4006 or V1 R0.1.0). It arises from missing authentication, allowing an unauthenticated attacker to upload arb...
CVE-2016-0796
WordPress Plugin mb.miniAudioPlayer-an HTML5 audio player for your mp3 files is prone to multiple vulnerabilities, including open proxy and security bypass vulnerabilities because it fails to properly verify user-supplied input. An attacker may leverage these issues to hide attacks directed at a...
CVE-2023-47466
TagLib before 2.0 allows a segmentation violation and application crash during tag writing via a crafted WAV file in which an id3 chunk is the only valid chunk...
gstreamer1-plugins-good: OOB-read in gst_wavparse_smpl_chunk
A flaw was found in the GStreamer library. Various out-of-bounds reads in the WAV parser can cause crashes for certain input files, potentially allowing a malicious actor to trigger an application crash...
Linux Distros Unpatched Vulnerability : CVE-2017-11331
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The wavopen function in oggenc/audio.c in Xiph.Org vorbis-tools 1.4.0 allows remote attackers to cause a denial of service memory allocation error via a crafted...
PT-2024-25252 · Phiola · Phiola
Name of the Vulnerable Software and Affected Versions: phiola version 2.0-rc22 Description: An issue in phiola/src/afilter/pcm convert.h:513 allows a remote attacker to execute arbitrary code via a crafted .wav file. Recommendations: For phiola version 2.0-rc22, at the moment, there is no...
ROS-20240404-20
A vulnerability in the Vorbis-tools package is related to the conversion of wav files to ogg files. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
Denial Of Service (DoS)
vorbis-tools is vulnerable to Denial Of Service DoS. The vulnerability exists due to the buffer overflow in the library, which allows an attacker to execute arbitrary code and cause a denial of service during the conversion of wav files to ogg files...
SUSE SLES12 Security Update : vorbis-tools (SUSE-SU-2023:4218-1)
The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:4218-1 advisory. - CVE-2023-43361: Fixed a buffer overflow vulnerability during the conversion of wav files to ogg files. bsc1215942 Tenable has extracted th...
CVE-2023-43361
A buffer overflow vulnerability was found in vorbis-tools. This flaw allows a local attacker to execute arbitrary code and cause a denial of service during the conversion of WAV files to OGG files. Mitigation Mitigation for this issue is either not available or the currently available options do...
CVE-2023-43361
Buffer Overflow vulnerability in Vorbis-tools v.1.4.2 allows a local attacker to execute arbitrary code and cause a denial of service during the conversion of wav files to ogg files...
CVE-2023-43361
Buffer Overflow vulnerability in Vorbis-tools v.1.4.2 allows a local attacker to execute arbitrary code and cause a denial of service during the conversion of wav files to ogg files...
SoX 14.4.2 - Denial Of Service
Exploit Title: SoX 14.4.2 - Denial Of Service Exploit Author: LiquidWorm Vendor: Chris Bagwell Product web page: http://sox.sourceforge.net https://en.wikipedia.org/wiki/SoX Affected version: =14.4.2 Summary: SoX Sound eXchange is the Swiss Army knife of sound processing tools: it can convert sou...
[SECURITY] [DLA 3315-2] sox regression update
Debian LTS Advisory DLA-3315-2 [email protected] https://www.debian.org/lts/security/ Helmut Grohne March 20, 2023 https://wiki.debian.org/LTS Package : sox Version : 14.4.2+git20190427-1+deb10u2 Debian Bug : 1032082 One of the security fixes released as DLA 3315 introduced a regression...