Vulnerabilities > Light Speed Gaming > Mumble > 1.2.3

DATE CVE VULNERABILITY TITLE RISK
2014-02-08 CVE-2014-0045 Numeric Errors vulnerability in Light Speed Gaming Mumble and Mumblekit
The needSamples method in AudioOutputSpeech.cpp in the client in Mumble 1.2.4 and the 1.2.3 pre-release snapshots, Mumble for iOS 1.1 through 1.2.2, and MumbleKit before commit fd190328a9b24d37382b269a5674b0c0c7a7e36d does not check the return value of the opus_decode_float function, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted Opus voice packet, which triggers an error in opus_decode_float, a conversion of a negative integer to an unsigned integer, and a heap-based buffer over-read and over-write.
network
low complexity
light-speed-gaming CWE-189
7.5
7.5
2014-02-08 CVE-2014-0044 Buffer Errors vulnerability in Light Speed Gaming Mumble 1.2.3/1.2.4
The opus_packet_get_samples_per_frame function in client in Mumble 1.2.4 and the 1.2.3 pre-release snapshots allows remote attackers to cause a denial of service (crash) via a crafted length prefix value, which triggers a NULL pointer dereference or a heap-based buffer over-read (aka "out-of-bounds array access").
network
low complexity
light-speed-gaming CWE-119
5.0
5.0