Multiple integer overflows in Free Lossless Audio Codec (FLAC) libFLAC before 1.2.1, as used in Winamp before 5.5 and other products, allow user-assisted remote attackers to execute arbitrary code via a malformed FLAC file that triggers improper memory allocation, resulting in a heap-based buffer overflow.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2007-10-12 14:17
Updated : 2017-09-28 18:29
NVD link : CVE-2007-4619
Mitre link : CVE-2007-4619
JSON object : View
CWE
CWE-189
Numeric Errors
Products Affected
flac
- libflac
nullsoft
- winamp