Heap-based buffer overflow in the GetWavHeader function in generic/jkSoundFile.c in the Snack Sound Toolkit, as used in WaveSurfer 1.8.8p4, allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a large chunk size in a WAV file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
kth wavesurfer 1.8.8 |
||
kth snack sound toolkit 2.2.10 |
||
opensuse opensuse 13.2 |
||
opensuse opensuse 13.1 |