Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
NVD Vulnerability Details :
CVE-2007-4066
Modified
More InfoOfficial Page
Source-secalert@redhat.com
View Known Exploited Vulnerability (KEV) details
Published At-21 Sep, 2007 | 19:17
Updated At-29 Sep, 2017 | 01:29

Multiple buffer overflows in Xiph.Org libvorbis before 1.2.0 allow context-dependent attackers to cause a denial of service or have other unspecified impact via a crafted OGG file, aka trac Changesets 13162, 13168, 13169, 13170, 13172, 13211, and 13215, as demonstrated by an overflow in oggenc.exe related to the _psy_noiseguards_8 array.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Date Added: N/A
Due Date: N/A
Vulnerability Name: N/A
Required Action: N/A
Metrics
TypeVersionBase scoreBase severityVector
Primary2.04.3MEDIUM
AV:N/AC:M/Au:N/C:N/I:N/A:P
Type: Primary
Version: 2.0
Base score: 4.3
Base severity: MEDIUM
Vector:
AV:N/AC:M/Au:N/C:N/I:N/A:P
CPE Matches
xiph.org
xiph.org
>>libvorbis>>Versions up to 1.2.0(inclusive)
cpe:2.3:a:xiph.org:libvorbis:*:*:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
CWE-119Primarynvd@nist.gov
CWE ID: CWE-119
Type: Primary
Source: nvd@nist.gov
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
http://secunia.com/advisories/24923secalert@redhat.com
N/A
http://secunia.com/advisories/26865secalert@redhat.com
Patch
Vendor Advisory
http://secunia.com/advisories/27099secalert@redhat.com
N/A
http://secunia.com/advisories/27170secalert@redhat.com
N/A
http://secunia.com/advisories/27439secalert@redhat.com
N/A
http://secunia.com/advisories/28614secalert@redhat.com
N/A
http://security.gentoo.org/glsa/glsa-200710-03.xmlsecalert@redhat.com
N/A
http://securitytracker.com/id?1018712secalert@redhat.com
N/A
http://svn.xiph.org/trunk/vorbis/CHANGESsecalert@redhat.com
N/A
http://www.debian.org/security/2008/dsa-1471secalert@redhat.com
N/A
http://www.mandriva.com/security/advisories?name=MDKSA-2007:194secalert@redhat.com
N/A
http://www.novell.com/linux/security/advisories/2007_23_sr.htmlsecalert@redhat.com
N/A
http://www.redhat.com/support/errata/RHSA-2007-0845.htmlsecalert@redhat.com
N/A
http://www.redhat.com/support/errata/RHSA-2007-0912.htmlsecalert@redhat.com
N/A
https://bugzilla.redhat.com/show_bug.cgi?id=249780secalert@redhat.com
Patch
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11453secalert@redhat.com
N/A
https://trac.xiph.org/changeset/13162secalert@redhat.com
N/A
https://trac.xiph.org/changeset/13168secalert@redhat.com
N/A
https://trac.xiph.org/changeset/13169secalert@redhat.com
N/A
https://trac.xiph.org/changeset/13170secalert@redhat.com
N/A
https://trac.xiph.org/changeset/13172secalert@redhat.com
N/A
https://trac.xiph.org/changeset/13211secalert@redhat.com
N/A
https://trac.xiph.org/changeset/13215secalert@redhat.com
N/A
https://trac.xiph.org/ticket/300secalert@redhat.com
N/A
https://trac.xiph.org/ticket/853secalert@redhat.com
N/A
Hyperlink: http://secunia.com/advisories/24923
Source: secalert@redhat.com
Resource: N/A
Hyperlink: http://secunia.com/advisories/26865
Source: secalert@redhat.com
Resource:
Patch
Vendor Advisory
Hyperlink: http://secunia.com/advisories/27099
Source: secalert@redhat.com
Resource: N/A
Hyperlink: http://secunia.com/advisories/27170
Source: secalert@redhat.com
Resource: N/A
Hyperlink: http://secunia.com/advisories/27439
Source: secalert@redhat.com
Resource: N/A
Hyperlink: http://secunia.com/advisories/28614
Source: secalert@redhat.com
Resource: N/A
Hyperlink: http://security.gentoo.org/glsa/glsa-200710-03.xml
Source: secalert@redhat.com
Resource: N/A
Hyperlink: http://securitytracker.com/id?1018712
Source: secalert@redhat.com
Resource: N/A
Hyperlink: http://svn.xiph.org/trunk/vorbis/CHANGES
Source: secalert@redhat.com
Resource: N/A
Hyperlink: http://www.debian.org/security/2008/dsa-1471
Source: secalert@redhat.com
Resource: N/A
Hyperlink: http://www.mandriva.com/security/advisories?name=MDKSA-2007:194
Source: secalert@redhat.com
Resource: N/A
Hyperlink: http://www.novell.com/linux/security/advisories/2007_23_sr.html
Source: secalert@redhat.com
Resource: N/A
Hyperlink: http://www.redhat.com/support/errata/RHSA-2007-0845.html
Source: secalert@redhat.com
Resource: N/A
Hyperlink: http://www.redhat.com/support/errata/RHSA-2007-0912.html
Source: secalert@redhat.com
Resource: N/A
Hyperlink: https://bugzilla.redhat.com/show_bug.cgi?id=249780
Source: secalert@redhat.com
Resource:
Patch
Hyperlink: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11453
Source: secalert@redhat.com
Resource: N/A
Hyperlink: https://trac.xiph.org/changeset/13162
Source: secalert@redhat.com
Resource: N/A
Hyperlink: https://trac.xiph.org/changeset/13168
Source: secalert@redhat.com
Resource: N/A
Hyperlink: https://trac.xiph.org/changeset/13169
Source: secalert@redhat.com
Resource: N/A
Hyperlink: https://trac.xiph.org/changeset/13170
Source: secalert@redhat.com
Resource: N/A
Hyperlink: https://trac.xiph.org/changeset/13172
Source: secalert@redhat.com
Resource: N/A
Hyperlink: https://trac.xiph.org/changeset/13211
Source: secalert@redhat.com
Resource: N/A
Hyperlink: https://trac.xiph.org/changeset/13215
Source: secalert@redhat.com
Resource: N/A
Hyperlink: https://trac.xiph.org/ticket/300
Source: secalert@redhat.com
Resource: N/A
Hyperlink: https://trac.xiph.org/ticket/853
Source: secalert@redhat.com
Resource: N/A
Change History
0Changes found
Details not found