Lucene search
K

35 matches found

Prion
Prion
added 2017/05/01 1:59 a.m.26 views

Code injection

The madlayerIII function in layer3.c in Underbit MAD libmad 0.15.1b, if NDEBUG is omitted, allows remote attackers to cause a denial of service assertion failure and application exit via a crafted audio file...

2.6CVSS4.7AI score0.02033EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2017/05/01 1:59 a.m.4 views

ALPINE-CVE-2017-8374

The madbitskip function in bit.c in Underbit MAD libmad 0.15.1b allows remote attackers to cause a denial of service heap-based buffer over-read and application crash via a crafted audio file...

5.5CVSS6.8AI score0.02239EPSS
Exploits1References1
OSV
OSV
added 2017/05/01 1:59 a.m.2 views

DEBIAN-CVE-2017-8374

The madbitskip function in bit.c in Underbit MAD libmad 0.15.1b allows remote attackers to cause a denial of service heap-based buffer over-read and application crash via a crafted audio file...

5.5CVSS6.8AI score0.02239EPSS
Exploits1References1
OSV
OSV
added 2017/05/01 1:59 a.m.4 views

ALPINE-CVE-2017-8372

The madlayerIII function in layer3.c in Underbit MAD libmad 0.15.1b, if NDEBUG is omitted, allows remote attackers to cause a denial of service assertion failure and application exit via a crafted audio file...

4.7CVSS6.7AI score0.02033EPSS
Exploits1References1
OSV
OSV
added 2017/05/01 1:59 a.m.1 views

DEBIAN-CVE-2017-8372

The madlayerIII function in layer3.c in Underbit MAD libmad 0.15.1b, if NDEBUG is omitted, allows remote attackers to cause a denial of service assertion failure and application exit via a crafted audio file...

4.7CVSS6.7AI score0.02033EPSS
Exploits1References1
OSV
OSV
added 2017/05/01 1:59 a.m.7 views

UBUNTU-CVE-2017-8372

The madlayerIII function in layer3.c in Underbit MAD libmad 0.15.1b, if NDEBUG is omitted, allows remote attackers to cause a denial of service assertion failure and application exit via a crafted audio file...

4.7CVSS6.7AI score0.02033EPSS
Exploits1References3
CVE
CVE
added 2017/05/01 1:0 a.m.138 views

CVE-2017-8373

CVE-2017-8373 affects Underbit MAD libmad 0.15.1b; the mad_layer_III function in layer3.c can be exploited by a crafted audio file to trigger a heap-based buffer overflow and crash the application (remote exploit possibility). Several advisories (SUSE, Debian, FreeBSD, Fedora) note this issue and...

7.8CVSS8AI score0.02538EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2017/05/01 1:0 a.m.99 views

CVE-2017-8374

CVE-2017-8374 affects libmad (Underbit MAD) via the mad_bit_skip function in bit.c, where a crafted audio file can cause a heap-based buffer over-read and application crash. Connected advisories show the issue being fixed in libmad updates across distributions: openSUSE openSUSE-2018-205 notes a ...

5.5CVSS5.9AI score0.02239EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2017/05/01 1:0 a.m.27 views

CVE-2017-8374

The madbitskip function in bit.c in Underbit MAD libmad 0.15.1b allows remote attackers to cause a denial of service heap-based buffer over-read and application crash via a crafted audio file...

6AI score0.02239EPSS
Exploits1References3
CVE
CVE
added 2017/05/01 1:0 a.m.146 views

CVE-2017-8372

CVE-2017-8372 affects Underbit MAD libmad 0.15.1b: the mad_layer_III function in layer3.c can trigger an assertion failure and application exit (DoS) when NDEBUG is omitted and a crafted audio file is processed. Connected advisories note multiple vendor patches (e.g., Debian DLA-1380-1; SUSE/SUSE...

4.7CVSS5.3AI score0.02033EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2017/05/01 1:0 a.m.31 views

CVE-2017-8373

The madlayerIII function in layer3.c in Underbit MAD libmad 0.15.1b allows remote attackers to cause a denial of service heap-based buffer overflow and application crash or possibly have unspecified other impact via a crafted audio file...

8.1AI score0.02538EPSS
Exploits1References3
AlpineLinux
AlpineLinux
added 2017/05/01 1:0 a.m.57 views

CVE-2017-8372

The madlayerIII function in layer3.c in Underbit MAD libmad 0.15.1b, if NDEBUG is omitted, allows remote attackers to cause a denial of service assertion failure and application exit via a crafted audio file...

4.7CVSS5.7AI score0.02033EPSS
Exploits1
Debian CVE
Debian CVE
added 2017/05/01 1:0 a.m.33 views

CVE-2017-8373

The madlayerIII function in layer3.c in Underbit MAD libmad 0.15.1b allows remote attackers to cause a denial of service heap-based buffer overflow and application crash or possibly have unspecified other impact via a crafted audio file...

7.8CVSS8.3AI score0.02538EPSS
Exploits1
AlpineLinux
AlpineLinux
added 2017/05/01 1:0 a.m.43 views

CVE-2017-8374

The madbitskip function in bit.c in Underbit MAD libmad 0.15.1b allows remote attackers to cause a denial of service heap-based buffer over-read and application crash via a crafted audio file...

5.5CVSS6.2AI score0.02239EPSS
Exploits1
seebug.org
seebug.org
added 2008/05/21 12:0 a.m.24 views

libid3tag拒绝服务漏洞

BUGTRAQ ID: 29210 CVECAN ID: CVE-2008-2109 libid3tag是MPEG音频解码器MAD中所捆绑的ID3标签操控库。 libid3tag库在解析ID3FIELDTYPESTRINGLIST字段时如果所要解析的数据以\0结尾的话,ptr == 0,但end - ptr条件为1,所以循环会无限继续。 以下是有漏洞的代码段: field.c 2003-04-19 09:14:33.000000000 +0900 --- field-patched.c 2008-01-13 16:08:22.000000000 +0900 291,297 end = p...

5CVSS0.2AI score0.07267EPSS
Exploits2
Rows per page
Query Builder