Lucene search
K

71 matches found

CVE
CVE
added 2014/11/26 3:0 p.m.124 views

CVE-2014-8962

CVE-2014-8962 is a stack-based buffer overflow in libFLAC’s stream_decoder.c (affected pre-1.3.1) that allows remote code execution via a crafted .flac file. Related CVE-2014-9028 is a heap-based overflow in the same component. The public details reference versions up to 1.3.1 and show patches/up...

7.5CVSS7.7AI score0.0986EPSS
Exploits0References13Affected Software1
Debian CVE
Debian CVE
added 2014/11/26 3:0 p.m.20 views

CVE-2014-9028

Heap-based buffer overflow in streamdecoder.c in libFLAC before 1.3.1 allows remote attackers to execute arbitrary code via a crafted .flac file...

7.5CVSS7.7AI score0.09849EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2014/11/26 12:0 a.m.18 views

CVE-2014-8962

Stack-based buffer overflow in streamdecoder.c in libFLAC before 1.3.1 allows remote attackers to execute arbitrary code via a crafted .flac file...

7.5CVSS6.4AI score0.0986EPSS
Exploits0References4
ArchLinux
ArchLinux
added 2014/11/26 12:0 a.m.31 views

flac: arbitrary code execution

A stack overflow and a heap overflow condition have been found in libFLAC when parsing a maliciously crafted .flac file, which may result in arbitrary code execution...

7.5CVSS5.1AI score0.0986EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2014/11/26 12:0 a.m.38 views

CVE-2014-9028

Heap-based buffer overflow in streamdecoder.c in libFLAC before 1.3.1 allows remote attackers to execute arbitrary code via a crafted .flac file...

7.5CVSS6.4AI score0.09849EPSS
Exploits0References2
OSV
OSV
added 2014/11/26 12:0 a.m.5 views

UBUNTU-CVE-2014-8962

Stack-based buffer overflow in streamdecoder.c in libFLAC before 1.3.1 allows remote attackers to execute arbitrary code via a crafted .flac file...

7.5CVSS6.4AI score0.0986EPSS
Exploits0References5
NVD
NVD
added 2007/12/07 11:46 a.m.14 views

CVE-2007-6278

Free Lossless Audio Codec FLAC libFLAC before 1.2.1 allows user-assisted remote attackers to force a client to download arbitrary files via the MIME-Type URL flag -- for the FLAC image file in a crafted .FLAC file...

9.3CVSS6.7AI score0.0212EPSS
Exploits0References5
Prion
Prion
added 2007/12/07 11:46 a.m.18 views

Heap overflow

Multiple buffer overflows in Free Lossless Audio Codec FLAC libFLAC before 1.2.1 allow user-assisted remote attackers to execute arbitrary code via large 1 Metadata Block Size, 2 VORBIS Comment String Size, 3 Picture Metadata MIME-TYPE Size, 4 Picture Description Size, 5 Picture Data Length, 6...

9.3CVSS7.6AI score0.06748EPSS
Exploits0References8Affected Software1
Prion
Prion
added 2007/12/07 11:46 a.m.13 views

Design/Logic Flaw

Free Lossless Audio Codec FLAC libFLAC before 1.2.1 allows user-assisted remote attackers to force a client to download arbitrary files via the MIME-Type URL flag -- for the FLAC image file in a crafted .FLAC file...

9.3CVSS7.2AI score0.0212EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2007/12/07 11:46 a.m.18 views

CVE-2007-6279

Multiple double free vulnerabilities in Free Lossless Audio Codec FLAC libFLAC before 1.2.1 allow user-assisted remote attackers to execute arbitrary code via malformed 1 Seektable values or 2 Seektable Data Offsets in a .FLAC file...

9.3CVSS7.7AI score0.03979EPSS
Exploits0References5
Prion
Prion
added 2007/12/07 11:46 a.m.16 views

Double free

Multiple double free vulnerabilities in Free Lossless Audio Codec FLAC libFLAC before 1.2.1 allow user-assisted remote attackers to execute arbitrary code via malformed 1 Seektable values or 2 Seektable Data Offsets in a .FLAC file...

9.3CVSS8.3AI score0.03979EPSS
Exploits0References5Affected Software1
UbuntuCve
UbuntuCve
added 2007/12/07 11:46 a.m.36 views

CVE-2007-6279

Multiple double free vulnerabilities in Free Lossless Audio Codec FLAC libFLAC before 1.2.1 allow user-assisted remote attackers to execute arbitrary code via malformed 1 Seektable values or 2 Seektable Data Offsets in a .FLAC file...

9.3CVSS6AI score0.03979EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2007/12/07 11:46 a.m.32 views

CVE-2007-6278

Free Lossless Audio Codec FLAC libFLAC before 1.2.1 allows user-assisted remote attackers to force a client to download arbitrary files via the MIME-Type URL flag -- for the FLAC image file in a crafted .FLAC file...

9.3CVSS6AI score0.0212EPSS
Exploits0References1
OSV
OSV
added 2007/12/07 11:46 a.m.2 views

DEBIAN-CVE-2007-6279

Multiple double free vulnerabilities in Free Lossless Audio Codec FLAC libFLAC before 1.2.1 allow user-assisted remote attackers to execute arbitrary code via malformed 1 Seektable values or 2 Seektable Data Offsets in a .FLAC file...

9.3CVSS8AI score0.03979EPSS
Exploits0References1
Cvelist
Cvelist
added 2007/12/07 11:0 a.m.27 views

CVE-2007-6279

Multiple double free vulnerabilities in Free Lossless Audio Codec FLAC libFLAC before 1.2.1 allow user-assisted remote attackers to execute arbitrary code via malformed 1 Seektable values or 2 Seektable Data Offsets in a .FLAC file...

7.7AI score0.03979EPSS
Exploits0References5
CVE
CVE
added 2007/12/07 11:0 a.m.53 views

CVE-2007-6279

The vulnerability is in the Free Lossless Audio Codec (FLAC) libFLAC before 1.2.1, where multiple double-free flaws affect parsing .FLAC files. Specifically, malformed Seektable values or Seektable Data Offsets can allow user‑assisted remote attackers to execute arbitrary code. Practical impact i...

9.3CVSS7.7AI score0.03979EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2007/12/07 11:0 a.m.46 views

CVE-2007-6278

CVE-2007-6278 affects the FLAC library (libFLAC) prior to 1.2.1. A crafted .FLAC file can trigger the MIME-Type URL flag in the FLAC image block, allowing a user-assisted remote attacker to cause the client to download arbitrary files. The vulnerability stems from (unexplicit) handling of the ima...

9.3CVSS6.7AI score0.0212EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2007/12/07 11:0 a.m.18 views

CVE-2007-6278

Free Lossless Audio Codec FLAC libFLAC before 1.2.1 allows user-assisted remote attackers to force a client to download arbitrary files via the MIME-Type URL flag -- for the FLAC image file in a crafted .FLAC file...

6.6AI score0.0212EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2007/12/07 11:0 a.m.25 views

CVE-2007-6277

Multiple buffer overflows in Free Lossless Audio Codec FLAC libFLAC before 1.2.1 allow user-assisted remote attackers to execute arbitrary code via large 1 Metadata Block Size, 2 VORBIS Comment String Size, 3 Picture Metadata MIME-TYPE Size, 4 Picture Description Size, 5 Picture Data Length, 6...

9.3CVSS7.5AI score0.06742EPSS
Exploits0
Debian CVE
Debian CVE
added 2007/12/07 11:0 a.m.19 views

CVE-2007-6278

Free Lossless Audio Codec FLAC libFLAC before 1.2.1 allows user-assisted remote attackers to force a client to download arbitrary files via the MIME-Type URL flag -- for the FLAC image file in a crafted .FLAC file...

9.3CVSS6.4AI score0.0212EPSS
Exploits0
Rows per page
Query Builder