Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2004-0557
HistoryAug 06, 2004 - 4:00 a.m.

CVE-2004-0557

2004-08-0604:00:00
[email protected]
web.nvd.nist.gov
67
cve-2004-0557
buffer overflow
st_wavstartread
sox
remote code execution
wav file
nvd

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.5 High

AI Score

Confidence

Low

0.268 Low

EPSS

Percentile

96.8%

JSON

Multiple buffer overflows in the st_wavstartread function in wav.c for Sound eXchange (SoX) 12.17.2 through 12.17.4 allow remote attackers to execute arbitrary code via certain WAV file header fields.

Affected configurations

NVD
Node
soxsoxMatch12.17.2
OR
soxsoxMatch12.17.3
OR
soxsoxMatch12.17.4
OR
conectivalinuxMatch8.0
OR
conectivalinuxMatch9.0
OR
conectivalinuxMatch10.0
Node
gentoolinuxMatch1.4
OR
redhatenterprise_linuxMatch3.0advanced_servers
OR
redhatenterprise_linuxMatch3.0enterprise_server
OR
redhatenterprise_linuxMatch3.0workstation
OR
redhatenterprise_linux_desktopMatch3.0
OR
redhatfedora_coreMatchcore_1.0
OR
redhatfedora_coreMatchcore_2.0

Related

nessus 8
securityvulns 1
openvas 6
exploitpack 1
debian 2
nvd 1
seebug 2
packetstorm 1
ubuntucve 1
debiancve 1
cvelist 1
redhat 1
osv 1
freebsd 1
gentoo 1
exploitdb 1
suse 1
nessus
nessus
RHEL 3 : sox (RHSA-2004:409)
2004-07-30 00:00:00
Fedora Core 2 : sox-12.17.4-4.fc2 (2004-244)
2004-07-28 00:00:00
Mandrake Linux Security Advisory : sox (MDKSA-2004:076)
2004-07-31 00:00:00
securityvulns
securityvulns
[Full-Disclosure] SoX buffer overflows when handling .WAV files
2004-07-29 00:00:00
openvas
openvas
FreeBSD Ports: sox
2008-09-04 00:00:00
FreeBSD Ports: sox
2008-09-04 00:00:00
Debian Security Advisory DSA 565-1 (sox)
2008-01-17 00:00:00
exploitpack
exploitpack
SoX - .wav Local Buffer Overflow
2004-08-04 00:00:00
debian
debian
[SECURITY] [DSA 565-1] New sox packages fix buffer overflow
2004-10-13 13:34:36
[SECURITY] [DSA 565-1] New sox packages fix buffer overflow
2004-10-13 13:34:36
nvd
nvd
CVE-2004-0557
2004-08-06 04:00:00
seebug
seebug
SoX - (.wav) Local Buffer Overflow Exploiter
2014-07-01 00:00:00
SoX Local Buffer Overflow Exploiter (Via Crafted WAV File)
2006-10-27 00:00:00
packetstorm
packetstorm
evil_song.py
2004-08-05 00:00:00
ubuntucve
ubuntucve
CVE-2004-0557
2004-08-06 00:00:00
debiancve
debiancve
CVE-2004-0557
2004-08-06 04:00:00
cvelist
cvelist
CVE-2004-0557
2004-08-02 04:00:00
redhat
redhat
(RHSA-2004:409) sox security update
2004-07-29 00:00:00
osv
osv
sox - buffer overflows
2004-10-13 00:00:00
freebsd
freebsd
SoX buffer overflows when handling .WAV files
2004-07-28 00:00:00
gentoo
gentoo
SoX: Multiple buffer overflows
2004-07-30 00:00:00
exploitdb
exploitdb
SoX - '.wav' Local Buffer Overflow
2004-08-04 00:00:00
suse
suse
remote system compromise in libpng
2004-08-04 15:12:06

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.5 High

AI Score

Confidence

Low

0.268 Low

EPSS

Percentile

96.8%

JSON
Related for CVE-2004-0557
nessus8securityvulns1openvas6exploitpack1debian2nvd1seebug2packetstorm1ubuntucve1debiancve1cvelist1redhat1osv1freebsd1gentoo1exploitdb1suse1