Lucene search
Ubuntu.comUB:CVE-2012-6303HistoryOct 28, 2013 - 12:00 a.m.
CVE-2012-6303
2013-10-2800:00:00
ubuntu.com
ubuntu.com
7
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.038 Low
EPSS
Percentile
91.7%
Heap-based buffer overflow in the GetWavHeader function in
generic/jkSoundFile.c in the Snack Sound Toolkit, as used in WaveSurfer
1.8.8p4, allows remote attackers to cause a denial of service (crash) and
possibly execute arbitrary code via a large chunk size in a WAV file.
Bugs
Notes
| Author | Note |
|---|---|
| jdstrand | per Debian, affects snack, not wavesurfer |
Related
nessus
nessus
Fedora 18 : tcl-snack-2.2.10-17.fc18 (2013-0083)
2013-01-14 00:00:00
Fedora 17 : tcl-snack-2.2.10-17.fc17 (2013-0098)
2013-01-14 00:00:00
openSUSE Security Update : snack (openSUSE-2015-183)
2015-02-27 00:00:00
suse
suse
Security update for snack (important)
2017-11-15 15:06:54
Security update for snack (important)
2015-02-26 11:04:48
openvas
openvas
Gentoo Security Advisory GLSA 201309-04
2015-09-29 00:00:00
openSUSE: Security Advisory for snack (openSUSE-SU-2017:3016-1)
2017-11-16 00:00:00
Fedora Update for tcl-snack FEDORA-2013-0098
2013-01-15 00:00:00
fedora
fedora
[SECURITY] Fedora 17 Update: tcl-snack-2.2.10-17.fc17
2013-01-12 15:10:08
[SECURITY] Fedora 16 Update: tcl-snack-2.2.10-17.fc16
2013-01-12 15:19:59
[SECURITY] Fedora 18 Update: tcl-snack-2.2.10-17.fc18
2013-01-12 00:41:10
prion
prion
Heap overflow
2013-10-28 22:55:00
gentoo
gentoo
Snack: User-assisted execution of arbitrary code
2013-09-11 00:00:00
cve
cve
CVE-2012-6303
2013-10-28 22:55:00
debiancve
debiancve
CVE-2012-6303
2013-10-28 22:55:00
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.038 Low
EPSS
Percentile
91.7%
Related for UB:CVE-2012-6303