CVE-2009-0186 in Mega-nerd libsndfileinfo

Summary

Integer overflow in libsndfile 1.0.18, as used in Winamp and other products, allows context-dependent attackers to execute arbitrary code via crafted description chunks in a CAF audio file, leading to a heap-based buffer overflow.

Reservation

01/20/2009

Disclosure

03/04/2009

Entries

VulDB provides additional information and datapoints for this CVE:

IDVulnerabilityCWEExpCouCVE
46965Mega-nerd libsndfile numeric error189Proof-of-ConceptOfficial fixCVE-2009-0186

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

PreviousOverviewNext

Want to stay up to date on a daily basis?

Enable the mail alert feature now!