N/A

The BASS Audio Library 2.4.14 under Windows is prone to a BASS_StreamCreateFile Use after Free vulnerability via a crafted .ogg file. An attacker can exploit this to gain access to sensitive information that may aid in further attacks. A failure in exploitation leads to denial of service.

N/A

N/A

Audio File Library 资源管理错误漏洞

Audio File Library（又名audiofile）是一款音频文件库。 BASS Audio Library Windows 2.4.14版本存在安全漏洞，该漏洞源于使用.ogg文件容易触发BASS StreamCreateFile漏洞。攻击者可利用该漏洞可以利用这一点来访问可能有助于进一步攻击的敏感信息。

N/A

N/A