CVE-2007-6277 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2007-6277
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2007-6277

Description: Multiple buffer overflows in Free Lossless Audio Codec (FLAC) libFLAC before 1.2.1 allow user-assisted remote attackers to execute arbitrary code via large (1) Metadata Block Size, (2) VORBIS Comment String Size, (3) Picture Metadata MIME-TYPE Size, (4) Picture Description Size, (5) Picture Data Length, (6) Padding Length, and (7) PICTURE Metadata width and height values in a .FLAC file, which result in a heap-based overflow; and large (8) VORBIS Comment String Size Length, (9) Picture MIME-Type, (10) Picture MIME-Type URL, and (11) Picture Description Length values in a .FLAC file, which result in a stack-based overflow. NOTE: some of these issues may overlap CVE-2007-4619.

CVE Status: Candidate

References: ST 1018974 SREASON http://securityreason.com/securityalert/3423 SAID Secunia Advisory: SA28548 EEYE http://research.eeye.com/html/advisories/published/AD20071115.html DEBIAN http://www.debian.org/security/2008/dsa-1469 CERT-VN 544656 BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/483765/100/200/threaded

Return to the previous page.