QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2007-4619

Back to search

CVE-2007-4619

Published: Oct 12, 2007

Modified: Aug 7, 2024

PUBLISHED

Description

Multiple integer overflows in Free Lossless Audio Codec (FLAC) libFLAC before 1.2.1, as used in Winamp before 5.5 and other products, allow user-assisted remote attackers to execute arbitrary code via a malformed FLAC file that triggers improper memory allocation, resulting in a heap-based buffer overflow.

VendorProductVersions

n/a

n/a

affected
n/a

References

26042
vdb-entry
x_refsource_BID
GLSA-200711-15
vendor-advisory
x_refsource_GENTOO
27507
third-party-advisory
x_refsource_SECUNIA
27223
third-party-advisory
x_refsource_SECUNIA
DSA-1469
vendor-advisory
x_refsource_DEBIAN
USN-540-1
vendor-advisory
x_refsource_UBUNTU
27210
third-party-advisory
x_refsource_SECUNIA
27601
third-party-advisory
x_refsource_SECUNIA
ADV-2007-4061
vdb-entry
x_refsource_VUPEN
27780
third-party-advisory
x_refsource_SECUNIA
28548
third-party-advisory
x_refsource_SECUNIA
FEDORA-2007-2596
vendor-advisory
x_refsource_FEDORA
27878
third-party-advisory
x_refsource_SECUNIA
27355
third-party-advisory
x_refsource_SECUNIA
27628
third-party-advisory
x_refsource_SECUNIA
27399
third-party-advisory
x_refsource_SECUNIA
flac-media-files-bo(37187)
vdb-entry
x_refsource_XF
MDKSA-2007:214
vendor-advisory
x_refsource_MANDRIVA
1018815
vdb-entry
x_refsource_SECTRACK
ADV-2007-3483
vdb-entry
x_refsource_VUPEN
RHSA-2007:0975
vendor-advisory
x_refsource_REDHAT
oval:org.mitre.oval:def:10571
vdb-entry
signature
x_refsource_OVAL
27625
third-party-advisory
x_refsource_SECUNIA
SUSE-SR:2007:022
vendor-advisory
x_refsource_SUSE
ADV-2007-3484
vdb-entry
x_refsource_VUPEN

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now