Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

Related Vulnerabilities: CVE-2021-40827  

Clementine Music Player through 1.3.1 is vulnerable to a read access violation on block data move, affecting the MP3 file parsing functionality at memcpy+0x265. The vulnerability is triggered when the user opens a crafted MP3 file or loads a remote stream URL that is mishandled by Clementine. Attackers could exploit this issue to cause a crash (DoS) of the clementine process or achieve arbitrary code execution in the context of the current user.

Source
Severity Medium

Remote Yes

Type Arbitrary code execution

Description 

Clementine Music Player through 1.3.1 is vulnerable to a read access violation on block data move, affecting the MP3 file parsing functionality at memcpy+0x265. The vulnerability is triggered when the user opens a crafted MP3 file or loads a remote stream URL that is mishandled by Clementine. Attackers could exploit this issue to cause a crash (DoS) of the clementine process or achieve arbitrary code execution in the context of the current user.

AVG-2645 clementine 1.4.0rc1+759+gd033b38c4-1 Medium Vulnerable 

https://voidsec.com/advisories/cve-2021-40827/

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook

Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started