18 matches found
CVE-2025-71264
An out of bound array access flaw has been discovered in the mumble voip client. In certain situations decoding of opus encoded audio can attempt to access an array with an invalid index. This may result in a program crash. Mitigation Mitigation for this issue is either not available or the...
EUVD-2025-208685
Mumble before 1.6.870 is prone to an out-of-bounds array access, which may result in denial of service client crash...
EUVD-2014-3694
Malware in sbrugna...
SUSE CVE-2014-3756
The client in Mumble 1.2.x before 1.2.6 allows remote attackers to force the loading of an external file and cause a denial of service hang and resource consumption via a crafted string that is treated as rich-text by a Qt widget, as demonstrated by the 1 user or 2 channel name in a Qt dialog, 3...
SUSE CVE-2014-3755
The QSvg module in Qt, as used in the Mumble client 1.2.x before 1.2.6, allows remote attackers to cause a denial of service hang and resource consumption via a local file reference in an 1 image tag or 2 XML stylesheet in an SVG file...
USN-5195-2: Mumble vulnerability
It was discovered that the Mumble client supported websites for public servers with arbitrary URL schemes. If a user were tricked into visiting a malicious website from the public server list, a remote attacker could possibly execute arbitrary code...
USN-5195-2 mumble vulnerability
It was discovered that the Mumble client supported websites for public servers with arbitrary URL schemes. If a user were tricked into visiting a malicious website from the public server list, a remote attacker could possibly execute arbitrary code...
CVE-2014-3756
The client in Mumble 1.2.x before 1.2.6 allows remote attackers to force the loading of an external file and cause a denial of service hang and resource consumption via a crafted string that is treated as rich-text by a Qt widget, as demonstrated by the 1 user or 2 channel name in a Qt dialog, 3...
CVE-2014-3755
The QSvg module in Qt, as used in the Mumble client 1.2.x before 1.2.6, allows remote attackers to cause a denial of service hang and resource consumption via a local file reference in an 1 image tag or 2 XML stylesheet in an SVG file...
DEBIAN-CVE-2014-3755
The QSvg module in Qt, as used in the Mumble client 1.2.x before 1.2.6, allows remote attackers to cause a denial of service hang and resource consumption via a local file reference in an 1 image tag or 2 XML stylesheet in an SVG file...
Code injection
The QSvg module in Qt, as used in the Mumble client 1.2.x before 1.2.6, allows remote attackers to cause a denial of service hang and resource consumption via a local file reference in an 1 image tag or 2 XML stylesheet in an SVG file...
CVE-2014-3755
The QSvg module in Qt, as used in the Mumble client 1.2.x before 1.2.6, allows remote attackers to cause a denial of service hang and resource consumption via a local file reference in an 1 image tag or 2 XML stylesheet in an SVG file...
UBUNTU-CVE-2014-3755
The QSvg module in Qt, as used in the Mumble client 1.2.x before 1.2.6, allows remote attackers to cause a denial of service hang and resource consumption via a local file reference in an 1 image tag or 2 XML stylesheet in an SVG file...
CVE-2014-3755
The CVE-2014-3755 issue affects the Mumble client 1.2.x (Qt’s QSvg module) prior to 1.2.6. A local file reference in an SVG image tag or in an XML stylesheet can cause denial of service (hang/resource consumption). Base CVSS 5.0 (medium). Remediation: upgrade to Mumble 1.2.6 or newer (or apply ve...
CVE-2014-3755
The QSvg module in Qt, as used in the Mumble client 1.2.x before 1.2.6, allows remote attackers to cause a denial of service hang and resource consumption via a local file reference in an 1 image tag or 2 XML stylesheet in an SVG file...
DEBIAN-CVE-2014-0044
The opuspacketgetsamplesperframe function in client in Mumble 1.2.4 and the 1.2.3 pre-release snapshots allows remote attackers to cause a denial of service crash via a crafted length prefix value, which triggers a NULL pointer dereference or a heap-based buffer over-read aka "out-of-bounds array...
UBUNTU-CVE-2014-0045
The needSamples method in AudioOutputSpeech.cpp in the client in Mumble 1.2.4 and the 1.2.3 pre-release snapshots, Mumble for iOS 1.1 through 1.2.2, and MumbleKit before commit fd190328a9b24d37382b269a5674b0c0c7a7e36d does not check the return value of the opusdecodefloat function, which allows...
murmur-version NSE Script
Detects the Murmur service server for the Mumble voice communication client versions 1.2.X. The Murmur server listens on a TCP control and a UDP voice port with the same port number. This script activates on both a TCP and UDP port version scan. In both cases probe data is sent only to the UDP po...