Lucene search
K

316 matches found

Veracode
Veracode
added 2020/05/10 11:25 p.m.21 views

Denial Of Service (DoS)

faad2 is vulnerable to denial of service DoS. The vulnerability exists as an invalid memory address dereference was discovered in the hfassembly function of libfaad/sbrhfadj.c in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. The vulnerability causes a segmentation fault and application crash,...

5.5CVSS2.9AI score0.01207EPSS
Exploits1References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2019/12/13 12:0 a.m.7 views

The vulnerability of the mp4ff_read_stsc function in software for working with audio files, provided by Freeware Advanced Audio Decoder 2 (FAAD2), allows a hacker to trigger a service denial.

The vulnerability of the mp4ffreadstsc function in software for working with audio files, found in the Freeware Advanced Audio Decoder 2 FAAD2, relates to the execution of a loop without sufficient restrictions on its execution count. Exploiting this vulnerability could allow an attacker to cause...

7.1CVSS6.7AI score0.0096EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2019/12/13 12:0 a.m.5 views

The vulnerability of the mp4ff_read_stco function in software for working with audio files, found in the Freeware Advanced Audio Decoder 2 (FAAD2) software, allows a hacker to cause a service failure.

The vulnerability of the mp4ffreadstco function in software for working with audio files, found in the Freeware Advanced Audio Decoder 2 FAAD2, relates to the execution of a loop without sufficient restrictions on its execution count. Exploiting this vulnerability could allow an attacker to cause...

7.1CVSS6.7AI score0.0096EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2019/12/13 12:0 a.m.6 views

The vulnerability of the mp4ff_read_stsd function in software for working with audio files, specifically in the Freeware Advanced Audio Decoder 2 (FAAD2) software, allows a hacker to trigger a service denial.

The vulnerability of the mp4ffreadstsd function in software for working with audio files, such as Freeware Advanced Audio Decoder 2 FAAD2, is related to the execution of a loop with an unavailable exit condition. Exploiting this vulnerability can allow an attacker to cause service interruptions b...

7.1CVSS6.7AI score0.0096EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2019/12/13 12:0 a.m.5 views

The vulnerability of the mp4ff_read_stco function in software for working with audio files, found in the Freeware Advanced Audio Decoder 2 (FAAD2) software, allows a hacker to trigger a service denial.

The vulnerability of the mp4ffreadstco function in software for working with audio files, found in the Freeware Advanced Audio Decoder 2 FAAD2, relates to the execution of a loop without sufficient restrictions on its execution count. Exploiting this vulnerability could allow an attacker to cause...

7.1CVSS6.7AI score0.0096EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2019/12/13 12:0 a.m.7 views

The vulnerability of the mp4ff_parse_tag function in the software for working with audio files, found in Freeware Advanced Audio Decoder 2 (FAAD2). This vulnerability allows a hacker to cause a service failure.

The vulnerability of the mp4ffparsetag function in the software for working with audio files, found in the Freeware Advanced Audio Decoder 2 FAAD2, relates to the execution of a loop with an unavailable exit condition. Exploiting this vulnerability could allow a remote attacker to cause a service...

7.1CVSS6.8AI score0.0096EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2019/11/25 12:0 a.m.8 views

The vulnerability of the mp4ff_read_stco function (common/mp4ff/mp4atom.c) in the Freeware Advanced Audio Decoder 2 (FAAD2) allows a hacker to trigger a service denial.

The vulnerability of the mp4ffreadstco function common/mp4ff/mp4atom.c in the Freeware Advanced Audio Decoder 2 FAAD2 audio decoder is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability could allow an attacker to cause a service failure using a...

5.5CVSS6.9AI score0.00891EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2019/11/25 12:0 a.m.8 views

The vulnerability of the mp4ff_read_stsc function (common/mp4ff/mp4atom.c) in the Freeware Advanced Audio Decoder 2 (FAAD2) allows a hacker to trigger a service denial.

The vulnerability of the mp4ffreadstsc function in the Freeware Advanced Audio Decoder 2 FAAD2 audio decoder is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability could allow an attacker to cause a service failure using a specially created mp4 fi...

5.5CVSS6.9AI score0.00891EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2019/11/25 12:0 a.m.5 views

The vulnerability of the mp4ff_read_stsd function (common/mp4ff/mp4atom.c) in the Freeware Advanced Audio Decoder 2 (FAAD2) allows a hacker to trigger a service denial.

The vulnerability of the mp4ffreadstsd function common/mp4ff/mp4atom.c in the Freeware Advanced Audio Decoder 2 FAAD2 audio decoder is caused by reading beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to cause a service failure using a specially created...

5.5CVSS6.8AI score0.00891EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2019/10/16 12:0 a.m.7 views

The vulnerability of the excludedchannels() function in the Freeware Advanced Audio Decoder 2 (FAAD2) allows a intruder to compromise data integrity, gain unauthorized access to protected information, and cause service interruptions.

The vulnerability of the excludedchannels function in the Freeware Advanced Audio Decoder 2 FAAD2 is related to the issue of data being written beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to compromise data integrity, gain unauthorized access to...

7.8CVSS5.7AI score0.01518EPSS
Exploits1References7Affected Software2
BDU FSTEC
BDU FSTEC
added 2019/10/16 12:0 a.m.8 views

The vulnerability of the ifilter_bank function in the Freeware Advanced Audio Decoder 2 (FAAD2) allows a hacker to trigger a service failure.

The vulnerability of the ifilterbank function in the Freeware Advanced Audio Decoder 2 FAAD2 is related to the swapping of the zero pointer. Exploiting this vulnerability could allow a hacker to cause a service failure...

5.5CVSS5.5AI score0.01207EPSS
Exploits1References6Affected Software2
BDU FSTEC
BDU FSTEC
added 2019/10/16 12:0 a.m.8 views

The vulnerability of the calculate_gain function in the Freeware Advanced Audio Decoder 2 (FAAD2) allows a perpetrator to gain access to confidential data, compromise its integrity, and cause service failure.

The vulnerability of the calculategain function in the Freeware Advanced Audio Decoder 2 FAAD2 is related to an error that causes stack overflow. Exploiting this vulnerability could allow a remote attacker to compromise data integrity, gain unauthorized access to protected information, and cause...

10CVSS5.7AI score0.01317EPSS
Exploits1References6Affected Software2
BDU FSTEC
BDU FSTEC
added 2019/10/16 12:0 a.m.7 views

The vulnerability of the faad_resetbits() function in the software suite for working with audio files, Freeware Advanced Audio Decoder 2 (FAAD2), allows a perpetrator to compromise data integrity, gain unauthorized access to protected information, and cause service failures.

The vulnerability of the faadresetbits function in the software suite for working with audio files, Freeware Advanced Audio Decoder 2 FAAD2, is related to buffer overflows. Exploiting this vulnerability can allow an attacker to compromise data integrity, gain unauthorized access to protected...

7.8CVSS5.8AI score0.01316EPSS
Exploits0References6Affected Software2
BDU FSTEC
BDU FSTEC
added 2019/10/16 12:0 a.m.7 views

The vulnerability of the ic_predict component (libfaad/ic_predict.c) in the Freeware Advanced Audio Decoder 2 (FAAD2) allows a intruder to trigger a service denial.

The vulnerability of the icpredict component libfaad/icpredict.c in the Freeware Advanced Audio Decoder 2 FAAD2 is related to the handling of a zero pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS5.5AI score0.01165EPSS
Exploits1References6Affected Software2
BDU FSTEC
BDU FSTEC
added 2019/10/16 12:0 a.m.8 views

The vulnerability of the calculate_gain() function in the Freeware Advanced Audio Decoder 2 (FAAD2) allows a intruder to compromise data integrity, gain unauthorized access to protected information, and cause service failure.

The vulnerability of the calculategain function in the Freeware Advanced Audio Decoder 2 FAAD2 is related to the escape from memory buffers. Exploiting this vulnerability could allow an attacker to compromise data integrity, gain unauthorized access to protected information, and cause service...

7.8CVSS5.5AI score0.0145EPSS
Exploits1References9Affected Software6
BDU FSTEC
BDU FSTEC
added 2019/10/16 12:0 a.m.7 views

The vulnerability of the ifilter_bank() function in the Freeware Advanced Audio Decoder 2 (FAAD2) allows a intruder to compromise data integrity, gain unauthorized access to protected information, and cause service interruptions.

The vulnerability of the ifilterbank function in the Freeware Advanced Audio Decoder 2 FAAD2 is related to an error that causes a NULL pointer dereferencing. Exploiting this vulnerability could allow an attacker to compromise data integrity, gain unauthorized access to protected information, and...

7.8CVSS5.5AI score0.01383EPSS
Exploits1References7Affected Software2
BDU FSTEC
BDU FSTEC
added 2019/10/16 12:0 a.m.6 views

The vulnerability of the sbr_process_channel function in the Freeware Advanced Audio Decoder 2 (FAAD2) allows a hacker to trigger a service failure.

The vulnerability of the sbrprocesschannel function in the Freeware Advanced Audio Decoder 2 FAAD2 is related to the swapping of the zero pointer. Exploiting this vulnerability could allow a hacker to cause a service failure...

5.5CVSS5.5AI score0.01165EPSS
Exploits1References6Affected Software2
BDU FSTEC
BDU FSTEC
added 2019/10/16 12:0 a.m.9 views

The vulnerability of the lt_prediction function in the Freeware Advanced Audio Decoder 2 (FAAD2) allows a intruder to trigger a service failure.

The vulnerability of the ltprediction function in the Freeware Advanced Audio Decoder 2 FAAD2 is related to a pointer arithmetic error, which leads to a memory access that goes beyond the boundaries of the memory buffer. Exploiting this vulnerability can allow an attacker to cause a service failu...

5.5CVSS5.5AI score0.01154EPSS
Exploits1References6Affected Software2
Debian
Debian
added 2019/09/15 3:55 p.m.136 views

[SECURITY] [DSA 4522-1] faad2 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4522-1 [email protected] https://www.debian.org/security/ Hugo Lefeuvre September 15, 2019 https://www.debian.org/security/faq -...

7.8CVSS8.3AI score0.01518EPSS
Exploits12
NVD
NVD
added 2019/08/21 7:15 a.m.20 views

CVE-2019-15296

An issue was discovered in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. The faadresetbits function in libfaad/bits.c is affected by a buffer overflow vulnerability. The number of bits to be read is determined by ld-buffersize - words4, cast to uint32. If ld-buffersize - words4 is negative, a...

7.8CVSS7.7AI score0.01316EPSS
Exploits0References5
Rows per page
Query Builder