Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-5824

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2008-5824
Last Modified 26 Mar 2010 01:24:37
Published 02 Jan 2009 02:30:01
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-5824

Summary

Heap-based buffer overflow in msadpcm.c in libaudiofile in audiofile 0.2.6 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted WAV file.

Vulnerable Systems

Application

  • 68k Audiofile 0.2.6


References

VUPEN - ADV-2009-0005

UBUNTU - USN-912-1

BID - 33066

SECUNIA - 33273

MLIST - [oss-security] 20081230 CVE id request: audiofile

CONFIRM - http://musicpd.org/mantis/view.php?id=1915

SUSE - SUSE-SR:2009:003

CONFIRM - http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=510205

Related Patches

Novell SUSE 2009:5948 audiofile security update for SLE 10 SP2 i586

Novell SUSE 2011:7315 audiofile security update for SLE 10 SP3 i586

Novell SUSE 2011:7394 audiofile security update for SLE 10 SP4 i586


Last Updated: 27 May 2016 10:48:56