Astra Linux - уязвимость в wavpack

WavPack 5.1.0 and earlier is affected by: CWE-457: Use of Uninitialized Variables. The impact includes unexpected control flow, crashes, and segfaults. The affected component is ParseCaffHeaderConfig caff.c:486. The attack vector is a maliciously crafted .wav file. The fixed version is after the...

CVE-2018-25212

Boxoft wav-wma Converter 1.0 contains a local buffer overflow vulnerability in structured exception handling that allows attackers to execute arbitrary code by crafting malicious WAV files. Attackers can create a specially crafted WAV file with excessive data and ROP gadgets to overwrite the SEH...

CVE-2020-37000

Free MP3 CD Ripper 2.8 contains a stack buffer overflow vulnerability that allows remote attackers to execute arbitrary code by crafting a malicious WAV file with oversized payload. Attackers can leverage a specially crafted exploit file with shellcode, SEH bypass, and egghunter technique to...

CVE-2020-37000 Free MP3 CD Ripper 2.8 - Stack Buffer Overflow (SEH + Egghunter)

Free MP3 CD Ripper 2.8 contains a stack buffer overflow vulnerability that allows remote attackers to execute arbitrary code by crafting a malicious WAV file with oversized payload. Attackers can leverage a specially crafted exploit file with shellcode, SEH bypass, and egghunter technique to...

EUVD-2021-13592

Malware in sbrugna...

EUVD-2021-27919

Malicious code in bioql PyPI...

CVE-2021-26805

Buffer Overflow in tsMuxer 2.6.16 allows attackers to cause a Denial of Service DoS by running the application with a malicious WAV file...

SUSE CVE-2019-1010315

WavPack 5.1 and earlier is affected by: CWE 369: Divide by Zero. The impact is: Divide by zero can lead to sudden crash of a software/service that tries to parse a .wav file. The component is: ParseDsdiffHeaderConfig dsdiff.c:282. The attack vector is: Maliciously crafted .wav file. The fixed...

CVE-2021-42729 Adobe Bridge Memory Corruption could lead to Arbitrary code execution

Adobe Bridge version 11.1.1 and earlier is affected by a memory corruption vulnerability due to insecure handling of a malicious WAV file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required to exploit this vulnerability...

CVE-2021-43747

Adobe Premiere Rush version 1.5.16 and earlier is affected by a memory corruption vulnerability due to insecure handling of a malicious WAV file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required to exploit this vulnerability...

PT-2021-5702 · Adobe · Premiere Rush

Name of the Vulnerable Software and Affected Versions: Adobe Premiere Rush versions 1.5.16 and earlier Description: The issue is caused by a memory corruption vulnerability due to insecure handling of a malicious WAV file. This could potentially result in arbitrary code execution in the context o...

CVE-2021-40771

Adobe Prelude version 10.1 and earlier is affected by a memory corruption vulnerability due to insecure handling of a malicious WAV file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required in that the victim must open a specially...

CVE-2021-40771

Adobe Prelude version 10.1 and earlier is affected by a memory corruption vulnerability due to insecure handling of a malicious WAV file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required in that the victim must open a specially...

The vulnerability of the ParseDsdiffHeaderConfig function in the dsdiff.c component of the WavPack audio codec, related to division by zero, allows a attacker to cause a service failure.

The vulnerability of the ParseDsdiffHeaderConfig function in the dsdiff.c component of the WavPack audio codec is related to division by zero. Exploiting this vulnerability allows a remote attacker to cause a service failure using a malicious .wav file...

Daniel Kamil Kozar tsMuxer Buffer Overflow Vulnerability

Daniel Kamil Kozar tsMuxer is an open source application by Daniel Kamil Kozar. Transport stream mixer for remixing/mixing elementary streams. Daniel Kamil Kozar tsMuxer 2.6.16 suffers from a buffer overflow vulnerability that can be exploited by an attacker to cause a denial of service DoS by...

CVE-2021-26805

Buffer Overflow in tsMuxer 2.6.16 allows attackers to cause a Denial of Service DoS by running the application with a malicious WAV file...

Daniel Kamil Kozar tsMuxer 安全漏洞

Daniel Kamil Kozar tsMuxer is an open source application by Daniel Kamil Kozar. Transport stream mixer for remixing/mixing elementary streams. Daniel Kamil Kozar tsMuxer 2.6.16 suffers from a buffer overflow vulnerability that can be exploited by an attacker to cause a denial of service DoS by...

CVE-2019-1010317

WavPack 5.1.0 and earlier is affected by: CWE-457: Use of Uninitialized Variable. The impact is: Unexpected control flow, crashes, and segfaults. The component is: ParseCaffHeaderConfig caff.c:486. The attack vector is: Maliciously crafted .wav file. The fixed version is: After commit...

ALPINE-CVE-2019-1010319

WavPack 5.1.0 and earlier is affected by: CWE-457: Use of Uninitialized Variable. The impact is: Unexpected control flow, crashes, and segfaults. The component is: ParseWave64HeaderConfig wave64.c:211. The attack vector is: Maliciously crafted .wav file. The fixed version is: After commit...

DEBIAN-CVE-2019-1010315

WavPack 5.1 and earlier is affected by: CWE 369: Divide by Zero. The impact is: Divide by zero can lead to sudden crash of a software/service that tries to parse a .wav file. The component is: ParseDsdiffHeaderConfig dsdiff.c:282. The attack vector is: Maliciously crafted .wav file. The fixed...