Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libvorbis libvorbis 1.1.2 vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2007-3106
lib/info.c in libvorbis 1.1.2, and possibly other versions prior to 1.2.0, allows context-dependent malicious users to cause a denial of service and possibly execute arbitrary code via invalid (1) blocksize_0 and (2) blocksize_1 values, which trigger a "heap overwrite" ...
Libvorbis Libvorbis
Libvorbis Libvorbis 1.1.2
6.8
CVSSv2
CVE-2007-4029
libvorbis 1.1.2, and possibly other versions prior to 1.2.0, allows context-dependent malicious users to cause a denial of service via (1) an invalid mapping type, which triggers an out-of-bounds read in the vorbis_info_clear function in info.c, and (2) invalid blocksize values t...
Libvorbis Libvorbis 1.1.2
9.3
CVSSv2
CVE-2008-1423
Integer overflow in a certain quantvals and quantlist calculation in Xiph.org libvorbis 1.2.0 and previous versions allows remote malicious users to cause a denial of service (crash) or execute arbitrary code via a crafted OGG file with a large virtual space for its codebook, whi...
Xiph.org Libvorbis 1.0.0
Xiph.org Libvorbis 1.1.1
Xiph.org Libvorbis 1.1.2
Xiph.org Libvorbis 1.2.0
Xiph.org Libvorbis 1.0.1
Xiph.org Libvorbis 1.1.0
4.3
CVSSv2
CVE-2008-1419
Xiph.org libvorbis 1.2.0 and previous versions does not properly handle a zero value for codebook.dim, which allows remote malicious users to cause a denial of service (crash or infinite loop) or trigger an integer overflow.
Xiph.org Libvorbis 1.1.0
Xiph.org Libvorbis 1.1.1
Xiph.org Libvorbis 1.0.0
Xiph.org Libvorbis 1.0.1
Xiph.org Libvorbis 1.12
Xiph.org Libvorbis 1.2.0
6.8
CVSSv2
CVE-2008-1420
Integer overflow in residue partition value (aka partvals) evaluation in Xiph.org libvorbis 1.2.0 and previous versions allows remote malicious users to execute arbitrary code via a crafted OGG file, which triggers a heap overflow.
Xiph.org Libvorbis 1.2.0
Xiph.org Libvorbis 1.0.1
Xiph.org Libvorbis 1.1.0
Xiph.org Libvorbis 1.1.1
Xiph.org Libvorbis 1.12
Xiph.org Libvorbis 1.0.0
4.3
CVSSv2
CVE-2007-4066
Multiple buffer overflows in Xiph.Org libvorbis prior to 1.2.0 allow context-dependent malicious users to cause a denial of service or have other unspecified impact via a crafted OGG file, aka trac Changesets 13162, 13168, 13169, 13170, 13172, 13211, and 13215, as demonstrated by...
Xiph.org Libvorbis
10
CVSSv2
CVE-2009-3379
Multiple unspecified vulnerabilities in libvorbis, as used in Mozilla Firefox 3.5.x prior to 3.5.4, allow remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via unknown vectors. NOTE: this might overlap CVE-2009-2663.
Mozilla Firefox 3.5.1
Mozilla Firefox 3.5.2
Mozilla Firefox 3.5.3
9.3
CVSSv2
CVE-2009-2663
libvorbis before r16182, as used in Mozilla Firefox 3.5.x prior to 3.5.2 and other products, allows context-dependent malicious users to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a crafted .ogg file.
Mozilla Firefox 0.10.1
Mozilla Firefox 0.9.1
Mozilla Firefox 3.0.5
Mozilla Firefox 1.0.3
Mozilla Firefox 1.0.6
Mozilla Firefox 2.0.0.9
Mozilla Firefox 2.0 .6
Mozilla Firefox 2.0 .7
Mozilla Firefox 2.0 .9
Mozilla Firefox 2.0.0.11
Mozilla Firefox 0.10
Mozilla Firefox 0.8
Mozilla Firefox 2.0.0.20
Mozilla Firefox 1.0
Mozilla Firefox 1.0.4
Mozilla Firefox 1.0.7
Mozilla Firefox 2.0 .4
Mozilla Firefox 2.0 .5
Mozilla Firefox 2.0.0.10
Mozilla Firefox 2.0.0.16
Mozilla Firefox 0.3
Mozilla Firefox 1.5.0.5
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
firmware
CVE-2023-52866
CVE-2024-4367
CVE-2024-1721
CVE-2023-34992
XML injection
CVE-2023-52817
SQL
CVE-2023-52855
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started