CVE-2015-7805
Description
Heap-based buffer overflow in libsndfile 1.0.25 allows remote attackers to have unspecified impact via the headindex value in the header in an AIFF file.
Risk Information
Base Score
10.0
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
EPSS Score
Exploitation Probability
58.549
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Library for reading/writing audio files (USN-2832-1) libsndfile1_1.0.25-4ubuntu0.1_i386.deb | Linux |
| Library for reading/writing audio files (USN-2832-1) libsndfile1_1.0.25-4ubuntu0.1_amd64.deb | Linux |
| Library for reading/writing audio files (USN-2832-1) libsndfile1_1.0.25-9.1ubuntu0.15.04.1_i386.deb | Linux |
| Library for reading/writing audio files (USN-2832-1) libsndfile1_1.0.25-9.1ubuntu0.15.04.1_amd64.deb | Linux |
| Library for reading/writing audio files (USN-2832-1) libsndfile1_1.0.25-9.1_i386.deb | Linux |
| Library for reading/writing audio files (USN-2832-1) libsndfile1_1.0.25-9.1_amd64.deb | Linux |
| SUSE-SU-2015:1979-1(SUSE Linux Enterprise Desktop 11-SP3 ) libsndfile-1.0.20-2.10.2.x86_64.rpm | Linux |
| SUSE-SU-2015:1979-1(SUSE Linux Enterprise Desktop 11-SP3 ) libsndfile-32bit-1.0.20-2.10.2.x86_64.rpm | Linux |
| Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2015-7805) | NCM |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234