Free Lossless Audio Codec (FLAC) libFLAC prior to 1.2.1 allows user-assisted remote malicious users to force a client to download arbitrary files via the MIME-Type URL flag (-->) for the FLAC image file in a crafted .FLAC file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
flac libflac |