Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-8145

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2014-8145
Last Modified 31 Mar 2015 09:59:41
Published 31 Dec 2014 05:59:03
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2014-8145

Summary

Multiple heap-based buffer overflows in Sound eXchange (SoX) 14.4.1 and earlier allow remote attackers to have unspecified impact via a crafted WAV file to the (1) start_read or (2) AdpcmReadBlock function.

Vulnerable Systems

Application

  • Sound Exchange Project Sound Exchange 14.4.1

  • Soundexchange 14.4.1


References

MISC - http://www.ocert.org/advisories/ocert-2014-010.html

BID - 71774

MISC - http://packetstormsecurity.com/files/129699/SoX-14.4.1-Heap-Buffer-Overflow.html

MANDRIVA - MDVSA-2015:015

CONFIRM - http://advisories.mageia.org/MGASA-2014-0561.html


Last Updated: 27 May 2016 11:08:15