CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
EPSS
Percentile
89.8%
lib/vorbisfile.c in libvorbisfile in Xiph.Org libvorbis before 1.2.0 allows
context-dependent attackers to cause a denial of service (infinite loop)
via a crafted OGG file, aka trac Changeset 13217.
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/src/libvorbis-1.1.2-35.src.rpm
bugzilla.redhat.com/show_bug.cgi?id=249780
launchpad.net/bugs/cve/CVE-2007-4065
lists.opensuse.org/opensuse-security-announce/2007-10/msg00009.html
nvd.nist.gov/vuln/detail/CVE-2007-4065
security-tracker.debian.org/tracker/CVE-2007-4065
www.cve.org/CVERecord?id=CVE-2007-4065