Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Heap-based buffer overflow in the GetWavHeader function in generic/jkSoundFile.c in the Snack Sound Toolkit, as used in WaveSurfer 1.8.8p4, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large chunk size in a WAV file.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Snack Sound Toolkit ‘GetWavHeader()’函数缓冲区溢出漏洞
Vulnerability Description
Snack Sound Toolkit是瑞典皇家理工学院(KTH)开发的一个跨平台的用于脚本化音频操作的工具包。该工具包支持频谱分析、多重同步重放、音频数据处理等功能。 WaveSurfer 1.8.8p4版本中使用的Snack Sound Toolkit工具中的generic/jkSoundFile.c文件中的‘GetWavHeader’函数中存在基于堆的缓冲区溢出漏洞。远程攻击者可通过带有大数据块的WAV文件利用该漏洞造成拒绝服务(崩溃),也可能执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A