Published: 16/05/2011 Updated: 22/09/2011

CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6

VMScore: 935

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Buffer overflow in Adobe Audition 3.0.1 and previous versions allows remote malicious users to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a crafted Audition Session (aka .ses) file.

Vulnerable Product	Search on Vulmon	Subscribe to Product
adobe audition 3.0
adobe audition

#!/usr/bin/perl # # # Adobe Audition 30 (build 7283) Session File Handling Buffer Overflow PoC # # # Vendor: Adobe Systems Inc # Product web page: wwwadobecom/products/audition/ # Affected version: 30 (build 7238) # # Summary: Recording, mixing, editing, and mastering Adobe® Audition® 3 software is the # all-in-one toolset for prof ...

Adobe Audition version 30 build 7238 suffers from a buffer overflow vulnerability when dealing with SES (session) format file The application fails to sanitize the user input resulting in a memory corruption, overwriting several memory registers which can aid the attacker to gain the power of executing arbitrary code or denial of service ...

CWE-119 http://www.exploit-db.com/exploits/17278/http://www.zeroscience.mk/en/vulnerabilities/ZSL-2011-5012.php http://www.securityfocus.com/bid/47841 http://www.adobe.com/support/security/bulletins/apsb11-10.html http://securityreason.com/securityalert/8253 https://nvd.nist.gov https://www.exploit-db.com/exploits/17278/

CVE-2011-0614

Vulnerability Summary

Vulnerability Trend

Exploits

References

Vulmon Search

About

Products

Connect