Computer Security
[EN] securityvulns.ru no-pyccku


flack123 buffer overflow
Published:30.06.2007
Source:
SecurityVulns ID:7872
Type:client
Threat Level:
5/10
Description:Stack-based buffer overflow on Vorbis comments parsing
Affected:FLACKTOOLS : flac123 0.0
CVE:CVE-2007-3507 (Stack-based buffer overflow in the local__vcentry_parse_value function in vorbiscomment.c in flac123 (aka flac-tools or flac) before 0.0.10 allows user-assisted remote attackers to execute arbitrary code via a large comment value_length.)
Original documentdocumentDavid Thiel, flac123 0.0.9 - Stack overflow in comment parsing (30.06.2007)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod