CVE ID:	CVE-2009-1788
Description:	Heap-based buffer overflow in voc_read_header in libsndfile 1.0.15 through 1.0.19, as used in Winamp 5.552 and possibly other media programs, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a VOC file with an invalid header value.
Test IDs:	1.3.6.1.4.1.25623.1.0.64250   1.3.6.1.4.1.25623.1.0.66439   1.3.6.1.4.1.25623.1.0.64121   1.3.6.1.4.1.25623.1.0.66438
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2009-1788 http://trapkit.de/advisories/TKADV2009-006.txt Debian Security Information: DSA-1814 (Google Search) http://www.debian.org/security/2009/dsa-1814 http://security.gentoo.org/glsa/glsa-200905-09.xml http://www.mandriva.com/security/advisories?name=MDVSA-2009:132 BugTraq ID: 34978 http://www.securityfocus.com/bid/34978 http://secunia.com/advisories/35076 http://secunia.com/advisories/35126 http://secunia.com/advisories/35247 http://secunia.com/advisories/35443 http://www.vupen.com/english/advisories/2009/1324 http://www.vupen.com/english/advisories/2009/1348 XForce ISS Database: libsndfile-aiff-voc-bo(50541) http://xforce.iss.net/xforce/xfdb/50541 XForce ISS Database: libsndfile-voc-bo(50827) http://xforce.iss.net/xforce/xfdb/50827

New User Registration Email: UserID: Passwd: Please email me your monthly newsletters, informing the latest services, improvements & surveys. Please email me a vulnerability test announcement whenever a new test is added.     Privacy

Registered User Login   UserID:     Passwd:     Forgot userid or passwd? Email/Userid: