Vulnerabilities > Mega Nerd > Libsndfile > 1.0.14

DATE CVE VULNERABILITY TITLE RISK
2009-03-05 CVE-2009-0186 Numeric Errors vulnerability in multiple products
Integer overflow in libsndfile 1.0.18, as used in Winamp and other products, allows context-dependent attackers to execute arbitrary code via crafted description chunks in a CAF audio file, leading to a heap-based buffer overflow.
network
nullsoft mega-nerd CWE-189
critical
9.3
2007-09-19 CVE-2007-4974 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Mega-Nerd Libsndfile
Heap-based buffer overflow in the flac_buffer_copy function in libsndfile 1.0.17 and earlier might allow remote attackers to execute arbitrary code via a FLAC file with crafted PCM data containing a block with a size that exceeds the previous block size.
network
low complexity
mega-nerd CWE-119
7.5