Lucene search

[email protected]NVD:CVE-2011-2696

HistoryJul 27, 2011 - 2:55 a.m.

CVE-2011-2696

2011-07-2702:55:02

CWE-119

[email protected]

web.nvd.nist.gov

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

Confidence

High

EPSS

0.075

Percentile

94.1%

JSON

Integer overflow in libsndfile before 1.0.25 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PARIS Audio Format (PAF) file that triggers a heap-based buffer overflow.

Affected configurations

Nvd

Node

mega-nerdlibsndfileRange≤1.0.24

mega-nerdlibsndfileMatch0.0.8

mega-nerdlibsndfileMatch0.0.28

mega-nerdlibsndfileMatch1.0.0

mega-nerdlibsndfileMatch1.0.0rc1

mega-nerdlibsndfileMatch1.0.0rc6

mega-nerdlibsndfileMatch1.0.1

mega-nerdlibsndfileMatch1.0.2

mega-nerdlibsndfileMatch1.0.3

mega-nerdlibsndfileMatch1.0.4

mega-nerdlibsndfileMatch1.0.5

mega-nerdlibsndfileMatch1.0.6

mega-nerdlibsndfileMatch1.0.7

mega-nerdlibsndfileMatch1.0.8

mega-nerdlibsndfileMatch1.0.9

mega-nerdlibsndfileMatch1.0.10

mega-nerdlibsndfileMatch1.0.11

mega-nerdlibsndfileMatch1.0.12

mega-nerdlibsndfileMatch1.0.13

mega-nerdlibsndfileMatch1.0.14

mega-nerdlibsndfileMatch1.0.15

mega-nerdlibsndfileMatch1.0.16

mega-nerdlibsndfileMatch1.0.17

mega-nerdlibsndfileMatch1.0.18

mega-nerdlibsndfileMatch1.0.19

mega-nerdlibsndfileMatch1.0.20

mega-nerdlibsndfileMatch1.0.21

mega-nerdlibsndfileMatch1.0.22

mega-nerdlibsndfileMatch1.0.23

VendorProductVersionCPE
mega-nerdlibsndfile*cpe:2.3:a:mega-nerd:libsndfile:*:*:*:*:*:*:*:*
mega-nerdlibsndfile0.0.8cpe:2.3:a:mega-nerd:libsndfile:0.0.8:*:*:*:*:*:*:*
mega-nerdlibsndfile0.0.28cpe:2.3:a:mega-nerd:libsndfile:0.0.28:*:*:*:*:*:*:*
mega-nerdlibsndfile1.0.0cpe:2.3:a:mega-nerd:libsndfile:1.0.0:*:*:*:*:*:*:*
mega-nerdlibsndfile1.0.0cpe:2.3:a:mega-nerd:libsndfile:1.0.0:rc1:*:*:*:*:*:*
mega-nerdlibsndfile1.0.0cpe:2.3:a:mega-nerd:libsndfile:1.0.0:rc6:*:*:*:*:*:*
mega-nerdlibsndfile1.0.1cpe:2.3:a:mega-nerd:libsndfile:1.0.1:*:*:*:*:*:*:*
mega-nerdlibsndfile1.0.2cpe:2.3:a:mega-nerd:libsndfile:1.0.2:*:*:*:*:*:*:*
mega-nerdlibsndfile1.0.3cpe:2.3:a:mega-nerd:libsndfile:1.0.3:*:*:*:*:*:*:*
mega-nerdlibsndfile1.0.4cpe:2.3:a:mega-nerd:libsndfile:1.0.4:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
mega-nerd	libsndfile	*	cpe:2.3:a:mega-nerd:libsndfile::::::::
mega-nerd	libsndfile	0.0.8	cpe:2.3:a:mega-nerd:libsndfile:0.0.8:::::::*
mega-nerd	libsndfile	0.0.28	cpe:2.3:a:mega-nerd:libsndfile:0.0.28:::::::*
mega-nerd	libsndfile	1.0.0	cpe:2.3:a:mega-nerd:libsndfile:1.0.0:::::::*
mega-nerd	libsndfile	1.0.0	cpe:2.3:a:mega-nerd:libsndfile:1.0.0:rc1::::::
mega-nerd	libsndfile	1.0.0	cpe:2.3:a:mega-nerd:libsndfile:1.0.0:rc6::::::
mega-nerd	libsndfile	1.0.1	cpe:2.3:a:mega-nerd:libsndfile:1.0.1:::::::*
mega-nerd	libsndfile	1.0.2	cpe:2.3:a:mega-nerd:libsndfile:1.0.2:::::::*
mega-nerd	libsndfile	1.0.3	cpe:2.3:a:mega-nerd:libsndfile:1.0.3:::::::*
mega-nerd	libsndfile	1.0.4	cpe:2.3:a:mega-nerd:libsndfile:1.0.4:::::::*