CVE-2023-43361
- EPSS 0.03%
- Veröffentlicht 02.10.2023 21:15:34
- Zuletzt bearbeitet 21.11.2024 08:24:03
Buffer Overflow vulnerability in Vorbis-tools v.1.4.2 allows a local attacker to execute arbitrary code and cause a denial of service during the conversion of wav files to ogg files.
CVE-2017-11331
- EPSS 1.9%
- Veröffentlicht 31.07.2017 13:29:00
- Zuletzt bearbeitet 20.04.2025 01:37:25
The wav_open function in oggenc/audio.c in Xiph.Org vorbis-tools 1.4.0 allows remote attackers to cause a denial of service (memory allocation error) via a crafted wav file.
CVE-2015-6749
- EPSS 2.52%
- Veröffentlicht 21.09.2015 19:59:02
- Zuletzt bearbeitet 12.04.2025 10:46:40
Buffer overflow in the aiff_open function in oggenc/audio.c in vorbis-tools 1.4.0 and earlier allows remote attackers to cause a denial of service (crash) via a crafted AIFF file.
- EPSS 1.28%
- Veröffentlicht 23.01.2015 15:59:10
- Zuletzt bearbeitet 12.04.2025 10:46:40
oggenc/oggenc.c in vorbis-tools 1.4.0 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted raw file.
- EPSS 1.36%
- Veröffentlicht 23.01.2015 15:59:09
- Zuletzt bearbeitet 12.04.2025 10:46:40
Integer overflow in oggenc in vorbis-tools 1.4.0 allows remote attackers to cause a denial of service (crash) via a crafted number of channels in a WAV file, which triggers an out-of-bounds memory access.
- EPSS 1.28%
- Veröffentlicht 23.01.2015 15:59:07
- Zuletzt bearbeitet 12.04.2025 10:46:40
oggenc in vorbis-tools 1.4.0 allows remote attackers to cause a denial of service (divide-by-zero error and crash) via a WAV file with the number of channels set to zero.