CVE-2017-9412

The unpack_read_samples function in frontend/get_audio.c in LAME 3.99.5 allows remote attackers to cause a denial of service (invalid memory read and application crash) via a crafted wav file.
References
Link Resource
http://seclists.org/fulldisclosure/2017/Jul/63 Exploit Mailing List Third Party Advisory
https://www.exploit-db.com/exploits/42390/
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:lame_project:lame:3.99.5:*:*:*:*:*:*:*

Information

Published : 2017-07-26 23:29

Updated : 2017-08-11 18:29


NVD link : CVE-2017-9412

Mitre link : CVE-2017-9412


JSON object : View

CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

Advertisement

dedicated server usa

Products Affected

lame_project

  • lame