Test Kennung:	1.3.6.1.4.1.25623.1.0.900558
Kategorie:	Buffer overflow
Titel:	Winamp libsndfile Buffer Overflow Vulnerability
Zusammenfassung:	Winamp is prone to a buffer overflow vulnerability.
Beschreibung:	Summary: Winamp is prone to a buffer overflow vulnerability. Vulnerability Insight: The flaw is generated due to boundary error in 'voc_read_header()' and 'aiff_read_header()' functions in libsndfile.dll while processing VOC and AIFF files with invalid header values. Vulnerability Impact: Attackers may leverage this issue by executing arbitrary codes in the context of the affected application via specially crafted VOC, AIFF files and can cause denial of service. Affected Software/OS: Winamp version 5.552 and prior on Windows. Solution: Upgrade to the latest libsndfile version. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2009-1788 BugTraq ID: 34978 http://www.securityfocus.com/bid/34978 Debian Security Information: DSA-1814 (Google Search) http://www.debian.org/security/2009/dsa-1814 http://security.gentoo.org/glsa/glsa-200905-09.xml http://www.mandriva.com/security/advisories?name=MDVSA-2009:132 http://trapkit.de/advisories/TKADV2009-006.txt http://secunia.com/advisories/35076 http://secunia.com/advisories/35126 http://secunia.com/advisories/35247 http://secunia.com/advisories/35443 http://www.vupen.com/english/advisories/2009/1324 http://www.vupen.com/english/advisories/2009/1348 XForce ISS Database: libsndfile-aiff-voc-bo(50541) https://exchange.xforce.ibmcloud.com/vulnerabilities/50541 XForce ISS Database: libsndfile-voc-bo(50827) https://exchange.xforce.ibmcloud.com/vulnerabilities/50827 Common Vulnerability Exposure (CVE) ID: CVE-2009-1791
Copyright	Copyright (C) 2009 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.