CVE-2007-3507 in flac123info

Summary

Stack-based buffer overflow in the local__vcentry_parse_value function in vorbiscomment.c in flac123 (aka flac-tools or flac) before 0.0.10 allows user-assisted remote attackers to execute arbitrary code via a large comment value_length.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Responsible

Reservation

07/02/2007

Disclosure

07/02/2007

Moderation

VulDB entry created

Entries

VDB-37585

CPE

ready

CWE

CWE-121 (Confirmed)

CVSS

10.0

EPSS

0.06919

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2007-3507
NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-3507
CVE Details	https://www.cvedetails.com/cve/CVE-2007-3507/

◂ Previous Overview Next ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!