Lucene search

K
FlacLibflac

6 matches found

CVE
CVE
added 2014/11/26 3:59 p.m.97 views

CVE-2014-8962

Stack-based buffer overflow in stream_decoder.c in libFLAC before 1.3.1 allows remote attackers to execute arbitrary code via a crafted .flac file.

7.5CVSS7.7AI score0.20658EPSS
CVE
CVE
added 2014/11/26 3:59 p.m.83 views

CVE-2014-9028

Heap-based buffer overflow in stream_decoder.c in libFLAC before 1.3.1 allows remote attackers to execute arbitrary code via a crafted .flac file.

7.5CVSS7.7AI score0.25739EPSS
CVE
CVE
added 2007/10/12 9:17 p.m.67 views

CVE-2007-4619

Multiple integer overflows in Free Lossless Audio Codec (FLAC) libFLAC before 1.2.1, as used in Winamp before 5.5 and other products, allow user-assisted remote attackers to execute arbitrary code via a malformed FLAC file that triggers improper memory allocation, resulting in a heap-based buffer o...

9.3CVSS7.4AI score0.06237EPSS
CVE
CVE
added 2007/12/07 11:46 a.m.44 views

CVE-2007-6277

Multiple buffer overflows in Free Lossless Audio Codec (FLAC) libFLAC before 1.2.1 allow user-assisted remote attackers to execute arbitrary code via large (1) Metadata Block Size, (2) VORBIS Comment String Size, (3) Picture Metadata MIME-TYPE Size, (4) Picture Description Size, (5) Picture Data Le...

9.3CVSS7.4AI score0.20343EPSS
CVE
CVE
added 2007/12/07 11:46 a.m.35 views

CVE-2007-6279

Multiple double free vulnerabilities in Free Lossless Audio Codec (FLAC) libFLAC before 1.2.1 allow user-assisted remote attackers to execute arbitrary code via malformed (1) Seektable values or (2) Seektable Data Offsets in a .FLAC file.

9.3CVSS7.7AI score0.0354EPSS
CVE
CVE
added 2007/12/07 11:46 a.m.34 views

CVE-2007-6278

Free Lossless Audio Codec (FLAC) libFLAC before 1.2.1 allows user-assisted remote attackers to force a client to download arbitrary files via the MIME-Type URL flag (-->) for the FLAC image file in a crafted .FLAC file.

9.3CVSS6.7AI score0.01328EPSS