20 matches found
EUVD-2017-2966
Malware in sbrugna...
EUVD-2013-1735
Malware in sbrugna...
EUVD-2017-18067
Malware in sbrugna...
EUVD-2021-29978
Malicious code in bioql PyPI...
EUVD-2021-29689
Malicious code in bioql PyPI...
EUVD-2021-29697
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2017-9129
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The wavopenread function in frontend/input.c in Freeware Advanced Audio Coder FAAC 1.28 allows remote attackers to cause a denial of service large loop via a...
Apple macOS AudioToolboxCore WAV File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
This vulnerability allows remote attackers to disclose sensitive information on affected installations of Apple macOS. Interaction with the AudioToolboxCore library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists with...
CVE-2021-43024 Adobe Premiere Rush WAV File Memory Corruption Remote Code Execution
Adobe Premiere Rush version 1.5.16 and earlier is affected by a memory corruption vulnerability due to insecure handling of a malicious WAV file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required to exploit this vulnerability...
CVE-2021-43747 Adobe Premiere Rush WAV File Memory Corruption Remote Code Execution
Adobe Premiere Rush version 1.5.16 and earlier is affected by a memory corruption vulnerability due to insecure handling of a malicious WAV file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required to exploit this vulnerability...
CVE-2021-40783 Adobe Premiere Rush WAV File Memory Corruption Remote Code Execution
Adobe Premiere Rush version 1.5.16 and earlier is affected by a memory corruption vulnerability due to insecure handling of a malicious WAV file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required to exploit this vulnerability...
CVE-2021-42737 Adobe Prelude WAV File Parsing Memory Corruption Arbitrary Code Execution
Adobe Prelude version 10.1 and earlier is affected by a memory corruption vulnerability due to insecure handling of a malicious WAV file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required in that the victim must open a specially...
CVE-2021-40754 Adobe After Effects WAV File Parsing Memory Corruption Arbitrary Code Execution
Adobe After Effects version 18.4.1 and earlier is affected by a memory corruption vulnerability due to insecure handling of a malicious WAV file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required in that the victim must open a...
SELA heap buffer overflow vulnerability
SELA is a lossless audio codec. a heap buffer overflow vulnerability exists in file::WavFile::writeToFile in wavfile.c in SELA 20200412 and earlier versions. No detailed vulnerability details are currently available...
libsndfile buffer out-of-bounds read vulnerability (CNVD-2019-00814)
libsndfile is a C library developed by software developer Erik de Castro Lopo that reads and writes audio files in AIFF, AU, and WAV formats through standard interfaces. A heap buffer out-of-bounds read vulnerability exists in the wav.c file in libsndfile version 1.0.28, which can be exploited to...
Microsoft Windows XP - .WAV File Handler Denial of Service
Microsoft Windows XP - .WAV File Handler Denial of Service source: https://www.securityfocus.com/bid/11503/info Microsoft Windows XP is reported prone to a denial of service vulnerability. The issue exists due to a lack of sufficient sanitization performed on WAV file header values before they ar...
Microsoft Windows XP - '.WAV' File Handler Denial of Service
source: https://www.securityfocus.com/bid/11503/info Microsoft Windows XP is reported prone to a denial of service vulnerability. The issue exists due to a lack of sufficient sanitization performed on WAV file header values before they are processed. If an exploit attempt is successful, the Windo...
CVE-2004-0557
Multiple buffer overflows in the stwavstartread function in wav.c for Sound eXchange SoX 12.17.2 through 12.17.4 allow remote attackers to execute arbitrary code via certain WAV file header fields...
[Full-Disclosure] SoX buffer overflows when handling .WAV files
SoX buffer overflows when handling .WAV files I have found two buffer overflows in SoX. They occur when the sox or play commands handle malicious .WAV files. The overflows have the identifier CAN-2004-0557. Versions 12.17.4, 12.17.3 and 12.17.2 are vulnerable to these overflows. Vulnerable versio...
AOL Instant Messenger vulnerable to DoS via crafted WAV file
Overview AOL Instant Messenger AIM is an application that allows one peer to communicate with another. A vulnerability exists that can crash the client of a victim. Description AIM allows users to send audio files to one another. By sending a corrupt WAV formatted file, an attacker can cause the...