Vulnerabilities > CVE-2009-0490 - Out-of-bounds Write vulnerability in Audacityteam Audacity
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Stack-based buffer overflow in the String_parse::get_nonspace_quoted function in lib-src/allegro/strparse.cpp in Audacity 1.2.6 and other versions before 1.3.6 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a .gro file containing a long string.
Vulnerable Configurations
Common Weakness Enumeration (CWE)
Exploit-Db
description Audacity 1.2.6 (.gro File) Local Buffer Overflow PoC. CVE-2009-0490. Dos exploit for windows platform file exploits/windows/dos/7634.pl id EDB-ID:7634 last seen 2016-02-01 modified 2009-01-01 platform windows port published 2009-01-01 reporter Houssamix source https://www.exploit-db.com/download/7634/ title Audacity 1.2.6 - .gro Local Buffer Overflow PoC type dos description Audacity <= 1.2 (.gro File) Universal BOF Exploit (egg hunter). CVE-2009-0490. Local exploit for windows platform id EDB-ID:9501 last seen 2016-02-01 modified 2009-08-24 published 2009-08-24 reporter mr_me source https://www.exploit-db.com/download/9501/ title Audacity <= 1.2 - .gro Universal BoF Exploit egg hunter description Audacity 1.2.6 (gro File) Buffer overflow Exploit. CVE-2009-0490. Local exploit for windows platform id EDB-ID:10322 last seen 2016-02-01 modified 2009-12-05 published 2009-12-05 reporter Encrypt3d.M!nd source https://www.exploit-db.com/download/10322/ title Audacity 1.2.6 gro File Buffer Overflow Exploit
Nessus
NASL family Mandriva Local Security Checks NASL id MANDRIVA_MDVSA-2009-055.NASL description A vulnerability has been identified and corrected in audacity : Stack-based buffer overflow in the String_parse::get_nonspace_quoted function in lib-src/allegro/strparse.cpp in Audacity 1.2.6 and other versions before 1.3.6 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a .gro file containing a long string (CVE-2009-0490). The updated packages have been patched to prevent this. last seen 2020-06-01 modified 2020-06-02 plugin id 36403 published 2009-04-23 reporter This script is Copyright (C) 2009-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/36403 title Mandriva Linux Security Advisory : audacity (MDVSA-2009:055) NASL family SuSE Local Security Checks NASL id SUSE_11_0_AUDACITY-090212.NASL description Specially crafted GRO files could cause a stack based buffer in audacity (CVE-2009-0490). last seen 2020-06-01 modified 2020-06-02 plugin id 39917 published 2009-07-21 reporter This script is Copyright (C) 2009-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/39917 title openSUSE Security Update : audacity (audacity-523) NASL family Gentoo Local Security Checks NASL id GENTOO_GLSA-200903-03.NASL description The remote host is affected by the vulnerability described in GLSA-200903-03 (Audacity: User-assisted execution of arbitrary code) Houssamix discovered a boundary error in the String_parse::get_nonspace_quoted() function in lib-src/allegro/strparse.cpp. Impact : A remote attacker could entice a user into importing a specially crafted *.gro file, resulting in the execution of arbitrary code or a Denial of Service. Workaround : There is no known workaround at this time. last seen 2020-06-01 modified 2020-06-02 plugin id 35793 published 2009-03-08 reporter This script is Copyright (C) 2009-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/35793 title GLSA-200903-03 : Audacity: User-assisted execution of arbitrary code NASL family SuSE Local Security Checks NASL id SUSE_11_1_AUDACITY-090212.NASL description Specially crafted GRO files could cause a stack based buffer in audacity (CVE-2009-0490). last seen 2020-06-01 modified 2020-06-02 plugin id 40190 published 2009-07-21 reporter This script is Copyright (C) 2009-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/40190 title openSUSE Security Update : audacity (audacity-523) NASL family SuSE Local Security Checks NASL id SUSE_AUDACITY-5997.NASL description Specially crafted GRO files could cause a stack based buffer in audacity (CVE-2009-0490). last seen 2020-06-01 modified 2020-06-02 plugin id 35676 published 2009-02-13 reporter This script is Copyright (C) 2009-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/35676 title openSUSE 10 Security Update : audacity (audacity-5997)
References
- http://bugs.gentoo.org/show_bug.cgi?id=253493
- http://www.securityfocus.com/bid/33090
- http://secunia.com/advisories/33356
- http://osvdb.org/51070
- http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00002.html
- http://www.vupen.com/english/advisories/2009/0008
- https://www.exploit-db.com/exploits/7634
- http://n2.nabble.com/Audacity-%22String_parse::get_nonspace_quoted%28%29%22-Buffer-Overflow-td2139537.html