|
|
CVE Reference: CVE-2007-4066 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2007-4066 |
|
|
Description: Multiple buffer overflows in Xiph.Org libvorbis before 1.2.0 allow context-dependent attackers to cause a denial of service or have other unspecified impact via a crafted OGG file, aka trac Changesets 13162, 13168, 13169, 13170, 13172, 13211, and 13215, as demonstrated by an overflow in oggenc.exe related to the _psy_noiseguards_8 array. |
|
|
CVE Status: Candidate |
|
|
References: SUSE http://www.novell.com/linux/security/advisories/2007_23_sr.html ST 1018712 SAID Secunia Advisory: SA24923 Secunia Advisory: SA27099 Secunia Advisory: SA26865 Secunia Advisory: SA27170 Secunia Advisory: SA27439 Secunia Advisory: SA28614 REDHAT http://www.redhat.com/support/errata/RHSA-2007-0912.html http://www.redhat.com/support/errata/RHSA-2007-0845.html OVAL http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:11453 MISC http://svn.xiph.org/trunk/vorbis/CHANGES MANDRIVA http://www.mandriva.com/security/advisories?name=MDKSA-2007:194 GENTOO http://security.gentoo.org/glsa/glsa-200710-03.xml DEBIAN http://www.debian.org/security/2008/dsa-1471 CONFIRM |
|
| Return to the previous page. |
