cvelistv5 - cve-2009-1791

CVE-2009-1791 (GCVE-0-2009-1791)

Vulnerability from cvelistv5 – Published: 2009-05-26 17:00 – Updated: 2024-08-07 05:27

Summary

Heap-based buffer overflow in aiff_read_header in libsndfile 1.0.15 through 1.0.19, as used in Winamp 5.552 and possibly other media programs, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via an AIFF file with an invalid header value.

Severity ?

No CVSS data available.

CWE

Assigner

mitre

References

URL

Tags

	http://www.mandriva.com/security/advisories?name=…	vendor-advisoryx_refsource_MANDRIVA
	http://www.mega-nerd.com/libsndfile/	x_refsource_CONFIRM
	http://www.vupen.com/english/advisories/2009/1324	vdb-entryx_refsource_VUPEN
	http://www.mega-nerd.com/erikd/Blog/CodeHacking/l…	x_refsource_CONFIRM
	http://secunia.com/advisories/35247	third-party-advisoryx_refsource_SECUNIA
	http://www.debian.org/security/2009/dsa-1814	vendor-advisoryx_refsource_DEBIAN
	https://exchange.xforce.ibmcloud.com/vulnerabilit…	vdb-entryx_refsource_XF
	http://secunia.com/advisories/35076	third-party-advisoryx_refsource_SECUNIA
	http://security.gentoo.org/glsa/glsa-200905-09.xml	vendor-advisoryx_refsource_GENTOO
	http://www.securityfocus.com/bid/34978	vdb-entryx_refsource_BID
	http://secunia.com/advisories/35443	third-party-advisoryx_refsource_SECUNIA

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T05:27:54.449Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "MDVSA-2009:132",
            "tags": [
              "vendor-advisory",
              "x_refsource_MANDRIVA",
              "x_transferred"
            ],
            "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:132"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.mega-nerd.com/libsndfile/"
          },
          {
            "name": "ADV-2009-1324",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2009/1324"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.mega-nerd.com/erikd/Blog/CodeHacking/libsndfile/"
          },
          {
            "name": "35247",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/35247"
          },
          {
            "name": "DSA-1814",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.debian.org/security/2009/dsa-1814"
          },
          {
            "name": "libsndfile-aiff-voc-bo(50541)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/50541"
          },
          {
            "name": "35076",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/35076"
          },
          {
            "name": "GLSA-200905-09",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "http://security.gentoo.org/glsa/glsa-200905-09.xml"
          },
          {
            "name": "34978",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/34978"
          },
          {
            "name": "35443",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/35443"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2009-05-14T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Heap-based buffer overflow in aiff_read_header in libsndfile 1.0.15 through 1.0.19, as used in Winamp 5.552 and possibly other media programs, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via an AIFF file with an invalid header value."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-08-16T14:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "MDVSA-2009:132",
          "tags": [
            "vendor-advisory",
            "x_refsource_MANDRIVA"
          ],
          "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:132"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.mega-nerd.com/libsndfile/"
        },
        {
          "name": "ADV-2009-1324",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2009/1324"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.mega-nerd.com/erikd/Blog/CodeHacking/libsndfile/"
        },
        {
          "name": "35247",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/35247"
        },
        {
          "name": "DSA-1814",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.debian.org/security/2009/dsa-1814"
        },
        {
          "name": "libsndfile-aiff-voc-bo(50541)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/50541"
        },
        {
          "name": "35076",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/35076"
        },
        {
          "name": "GLSA-200905-09",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "http://security.gentoo.org/glsa/glsa-200905-09.xml"
        },
        {
          "name": "34978",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/34978"
        },
        {
          "name": "35443",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/35443"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2009-1791",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Heap-based buffer overflow in aiff_read_header in libsndfile 1.0.15 through 1.0.19, as used in Winamp 5.552 and possibly other media programs, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via an AIFF file with an invalid header value."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "MDVSA-2009:132",
              "refsource": "MANDRIVA",
              "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:132"
            },
            {
              "name": "http://www.mega-nerd.com/libsndfile/",
              "refsource": "CONFIRM",
              "url": "http://www.mega-nerd.com/libsndfile/"
            },
            {
              "name": "ADV-2009-1324",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2009/1324"
            },
            {
              "name": "http://www.mega-nerd.com/erikd/Blog/CodeHacking/libsndfile/",
              "refsource": "CONFIRM",
              "url": "http://www.mega-nerd.com/erikd/Blog/CodeHacking/libsndfile/"
            },
            {
              "name": "35247",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/35247"
            },
            {
              "name": "DSA-1814",
              "refsource": "DEBIAN",
              "url": "http://www.debian.org/security/2009/dsa-1814"
            },
            {
              "name": "libsndfile-aiff-voc-bo(50541)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/50541"
            },
            {
              "name": "35076",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/35076"
            },
            {
              "name": "GLSA-200905-09",
              "refsource": "GENTOO",
              "url": "http://security.gentoo.org/glsa/glsa-200905-09.xml"
            },
            {
              "name": "34978",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/34978"
            },
            {
              "name": "35443",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/35443"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2009-1791",
    "datePublished": "2009-05-26T17:00:00",
    "dateReserved": "2009-05-26T00:00:00",
    "dateUpdated": "2024-08-07T05:27:54.449Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mega-nerd:libsndfile:1.0.15:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"570D85F0-F757-488A-A059-54BF0810F1E0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mega-nerd:libsndfile:1.0.16:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E28BC682-E6B1-4A63-9734-FDB6019B9AE0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mega-nerd:libsndfile:1.0.17:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8823A84B-4694-4838-A877-AE66400B26BD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mega-nerd:libsndfile:1.0.18:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D4C2B0D1-AE8A-4978-85B0-C5E0ABE89E79\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mega-nerd:libsndfile:1.0.19:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"759BBF60-8964-4590-A5EB-F21EB4049E39\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:nullsoft:winamp:5.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4E02CCF2-2335-4F08-8061-6CFD7C8B265A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:nullsoft:winamp:5.51:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8FEE5A4C-770A-458B-AC1A-8F1F99A0951A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:nullsoft:winamp:5.52:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B58E9493-556E-4085-B337-AE211A28DA6C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:nullsoft:winamp:5.54:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1C6E95D5-D855-4CD4-B44B-66FF029EC823\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:nullsoft:winamp:5.55:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"218E9850-70F5-4579-9549-47DD16ECD2B3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:nullsoft:winamp:5.541:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"951898A7-A060-4853-8C4E-99927794C0FC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:nullsoft:winamp:5.552:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5DA20F35-AC57-4B5B-9EF1-8A4393BD1B33\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Heap-based buffer overflow in aiff_read_header in libsndfile 1.0.15 through 1.0.19, as used in Winamp 5.552 and possibly other media programs, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via an AIFF file with an invalid header value.\"}, {\"lang\": \"es\", \"value\": \"Desbordamiento de b\\u00fafer basado en mont\\u00edculo en aiff_read_header en libsndfile desde v1.0.15 hasta v1.0.19, como se utiliza en Winamp v5.552 y posiblemente otros programas multimedia, permite a atacantes remotos producir una denegaci\\u00f3n (ca\\u00edda de aplicaci\\u00f3n) y posiblemente la ejecuci\\u00f3n de c\\u00f3digo de modo arbitrario a trav\\u00e9s de un fichero AIFF con un valor de cabecera no valido.\"}]",
      "id": "CVE-2009-1791",
      "lastModified": "2024-11-21T01:03:22.290",
      "metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:M/Au:N/C:C/I:C/A:C\", \"baseScore\": 9.3, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"COMPLETE\", \"integrityImpact\": \"COMPLETE\", \"availabilityImpact\": \"COMPLETE\"}, \"baseSeverity\": \"HIGH\", \"exploitabilityScore\": 8.6, \"impactScore\": 10.0, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": true}]}",
      "published": "2009-05-26T17:30:02.063",
      "references": "[{\"url\": \"http://secunia.com/advisories/35076\", \"source\": \"cve@mitre.org\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://secunia.com/advisories/35247\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/35443\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://security.gentoo.org/glsa/glsa-200905-09.xml\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.debian.org/security/2009/dsa-1814\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.mandriva.com/security/advisories?name=MDVSA-2009:132\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.mega-nerd.com/erikd/Blog/CodeHacking/libsndfile/\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://www.mega-nerd.com/libsndfile/\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/34978\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\"]}, {\"url\": \"http://www.vupen.com/english/advisories/2009/1324\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/50541\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/35076\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://secunia.com/advisories/35247\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/35443\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://security.gentoo.org/glsa/glsa-200905-09.xml\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.debian.org/security/2009/dsa-1814\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.mandriva.com/security/advisories?name=MDVSA-2009:132\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.mega-nerd.com/erikd/Blog/CodeHacking/libsndfile/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://www.mega-nerd.com/libsndfile/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/34978\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\"]}, {\"url\": \"http://www.vupen.com/english/advisories/2009/1324\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/50541\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
      "sourceIdentifier": "cve@mitre.org",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-119\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2009-1791\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2009-05-26T17:30:02.063\",\"lastModified\":\"2025-04-09T00:30:58.490\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Heap-based buffer overflow in aiff_read_header in libsndfile 1.0.15 through 1.0.19, as used in Winamp 5.552 and possibly other media programs, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via an AIFF file with an invalid header value.\"},{\"lang\":\"es\",\"value\":\"Desbordamiento de b\u00fafer basado en mont\u00edculo en aiff_read_header en libsndfile desde v1.0.15 hasta v1.0.19, como se utiliza en Winamp v5.552 y posiblemente otros programas multimedia, permite a atacantes remotos producir una denegaci\u00f3n (ca\u00edda de aplicaci\u00f3n) y posiblemente la ejecuci\u00f3n de c\u00f3digo de modo arbitrario a trav\u00e9s de un fichero AIFF con un valor de cabecera no valido.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:C/I:C/A:C\",\"baseScore\":9.3,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":8.6,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-119\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mega-nerd:libsndfile:1.0.15:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"570D85F0-F757-488A-A059-54BF0810F1E0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mega-nerd:libsndfile:1.0.16:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E28BC682-E6B1-4A63-9734-FDB6019B9AE0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mega-nerd:libsndfile:1.0.17:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8823A84B-4694-4838-A877-AE66400B26BD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mega-nerd:libsndfile:1.0.18:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D4C2B0D1-AE8A-4978-85B0-C5E0ABE89E79\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mega-nerd:libsndfile:1.0.19:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"759BBF60-8964-4590-A5EB-F21EB4049E39\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nullsoft:winamp:5.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4E02CCF2-2335-4F08-8061-6CFD7C8B265A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nullsoft:winamp:5.51:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8FEE5A4C-770A-458B-AC1A-8F1F99A0951A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nullsoft:winamp:5.52:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B58E9493-556E-4085-B337-AE211A28DA6C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nullsoft:winamp:5.54:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1C6E95D5-D855-4CD4-B44B-66FF029EC823\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nullsoft:winamp:5.55:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"218E9850-70F5-4579-9549-47DD16ECD2B3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nullsoft:winamp:5.541:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"951898A7-A060-4853-8C4E-99927794C0FC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nullsoft:winamp:5.552:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5DA20F35-AC57-4B5B-9EF1-8A4393BD1B33\"}]}]}],\"references\":[{\"url\":\"http://secunia.com/advisories/35076\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/35247\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/35443\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://security.gentoo.org/glsa/glsa-200905-09.xml\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.debian.org/security/2009/dsa-1814\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2009:132\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.mega-nerd.com/erikd/Blog/CodeHacking/libsndfile/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.mega-nerd.com/libsndfile/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/34978\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\"]},{\"url\":\"http://www.vupen.com/english/advisories/2009/1324\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/50541\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/35076\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/35247\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/35443\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://security.gentoo.org/glsa/glsa-200905-09.xml\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.debian.org/security/2009/dsa-1814\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2009:132\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.mega-nerd.com/erikd/Blog/CodeHacking/libsndfile/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.mega-nerd.com/libsndfile/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/34978\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"http://www.vupen.com/english/advisories/2009/1324\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/50541\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
  }
}

GHSA-5XQ8-86QP-X5Q2

Vulnerability from github – Published: 2022-05-02 03:28 – Updated: 2025-04-09 04:10

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2009-1791"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-119"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2009-05-26T17:30:00Z",
    "severity": "HIGH"
  },
  "details": "Heap-based buffer overflow in aiff_read_header in libsndfile 1.0.15 through 1.0.19, as used in Winamp 5.552 and possibly other media programs, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via an AIFF file with an invalid header value.",
  "id": "GHSA-5xq8-86qp-x5q2",
  "modified": "2025-04-09T04:10:07Z",
  "published": "2022-05-02T03:28:39Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-1791"
    },
    {
      "type": "WEB",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/50541"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/35076"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/35247"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/35443"
    },
    {
      "type": "WEB",
      "url": "http://security.gentoo.org/glsa/glsa-200905-09.xml"
    },
    {
      "type": "WEB",
      "url": "http://www.debian.org/security/2009/dsa-1814"
    },
    {
      "type": "WEB",
      "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:132"
    },
    {
      "type": "WEB",
      "url": "http://www.mega-nerd.com/erikd/Blog/CodeHacking/libsndfile"
    },
    {
      "type": "WEB",
      "url": "http://www.mega-nerd.com/libsndfile"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/34978"
    },
    {
      "type": "WEB",
      "url": "http://www.vupen.com/english/advisories/2009/1324"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

CERTA-2009-AVI-203

Vulnerability from certfr_avis - Published: - Updated:

Plusieurs vulnérabilités de la bibliothèque libsndfile permettent à un utilisateur malveillant d'exécuter à distance du code arbitraire sur le système vulnérable.

Description

Plusieurs vulnérabilités de la bibliothèque libsndfile ont été publiées :

la fonction header_read() ne vérifie pas correctement la donnée entrée pour un calcul de taille de tampon en mémoire. Ce défaut peut être utilisé pour provoquer un débordement de zone mémoire ;
la fonction aiff_read_header() ne vérifie pas correctement une borne. Ce défaut peut être utilisé pour provoquer un débordement de zone mémoire ;

Un utilisateur malveillant peut exploiter ces vulnérabilités en incitant un utilisateur à ouvrir un fichier AIFF ou VOC spécialement conçu.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Bibliothèque libsndfile version 1.0.19 et versions antérieures.

Impacted products

	Vendor	Product	Description

References

Title

Publication Time

Tags

Bulletin de sécurité Gentoo GLSA-200905-09 du 27 mai 2009 :

other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [],
  "affected_systems_content": "\u003cp\u003eBiblioth\u00e8que libsndfile version 1.0.19  et versions ant\u00e9rieures.\u003c/p\u003e",
  "content": "## Description\n\nPlusieurs vuln\u00e9rabilit\u00e9s de la biblioth\u00e8que libsndfile ont \u00e9t\u00e9 publi\u00e9es\n:\n\n-   la fonction header_read() ne v\u00e9rifie pas correctement la donn\u00e9e\n    entr\u00e9e pour un calcul de taille de tampon en m\u00e9moire. Ce d\u00e9faut peut\n    \u00eatre utilis\u00e9 pour provoquer un d\u00e9bordement de zone m\u00e9moire ;\n-   la fonction aiff_read_header() ne v\u00e9rifie pas correctement une\n    borne. Ce d\u00e9faut peut \u00eatre utilis\u00e9 pour provoquer un d\u00e9bordement de\n    zone m\u00e9moire ;\n\nUn utilisateur malveillant peut exploiter ces vuln\u00e9rabilit\u00e9s en incitant\nun utilisateur \u00e0 ouvrir un fichier AIFF ou VOC sp\u00e9cialement con\u00e7u.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2009-1791",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-1791"
    },
    {
      "name": "CVE-2009-1788",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-1788"
    }
  ],
  "links": [
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Gentoo GLSA-200905-09 du 27 mai 2009 :",
      "url": "http://www.gentoo.org/security/en/glsa/glsa-200905-09.xml"
    }
  ],
  "reference": "CERTA-2009-AVI-203",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2009-05-28T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    }
  ],
  "summary": "Plusieurs vuln\u00e9rabilit\u00e9s de la biblioth\u00e8que libsndfile permettent \u00e0 un\nutilisateur malveillant d\u0027ex\u00e9cuter \u00e0 distance du code arbitraire sur le\nsyst\u00e8me vuln\u00e9rable.\n",
  "title": "Vuln\u00e9rabilit\u00e9s de libsndfile",
  "vendor_advisories": []
}

CERTA-2009-AVI-203

Vulnerability from certfr_avis - Published: - Updated:

Plusieurs vulnérabilités de la bibliothèque libsndfile permettent à un utilisateur malveillant d'exécuter à distance du code arbitraire sur le système vulnérable.

Description

Plusieurs vulnérabilités de la bibliothèque libsndfile ont été publiées :

la fonction header_read() ne vérifie pas correctement la donnée entrée pour un calcul de taille de tampon en mémoire. Ce défaut peut être utilisé pour provoquer un débordement de zone mémoire ;
la fonction aiff_read_header() ne vérifie pas correctement une borne. Ce défaut peut être utilisé pour provoquer un débordement de zone mémoire ;

Un utilisateur malveillant peut exploiter ces vulnérabilités en incitant un utilisateur à ouvrir un fichier AIFF ou VOC spécialement conçu.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Bibliothèque libsndfile version 1.0.19 et versions antérieures.

Impacted products

	Vendor	Product	Description

References

Title

Publication Time

Tags

Bulletin de sécurité Gentoo GLSA-200905-09 du 27 mai 2009 :

other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [],
  "affected_systems_content": "\u003cp\u003eBiblioth\u00e8que libsndfile version 1.0.19  et versions ant\u00e9rieures.\u003c/p\u003e",
  "content": "## Description\n\nPlusieurs vuln\u00e9rabilit\u00e9s de la biblioth\u00e8que libsndfile ont \u00e9t\u00e9 publi\u00e9es\n:\n\n-   la fonction header_read() ne v\u00e9rifie pas correctement la donn\u00e9e\n    entr\u00e9e pour un calcul de taille de tampon en m\u00e9moire. Ce d\u00e9faut peut\n    \u00eatre utilis\u00e9 pour provoquer un d\u00e9bordement de zone m\u00e9moire ;\n-   la fonction aiff_read_header() ne v\u00e9rifie pas correctement une\n    borne. Ce d\u00e9faut peut \u00eatre utilis\u00e9 pour provoquer un d\u00e9bordement de\n    zone m\u00e9moire ;\n\nUn utilisateur malveillant peut exploiter ces vuln\u00e9rabilit\u00e9s en incitant\nun utilisateur \u00e0 ouvrir un fichier AIFF ou VOC sp\u00e9cialement con\u00e7u.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2009-1791",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-1791"
    },
    {
      "name": "CVE-2009-1788",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-1788"
    }
  ],
  "links": [
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Gentoo GLSA-200905-09 du 27 mai 2009 :",
      "url": "http://www.gentoo.org/security/en/glsa/glsa-200905-09.xml"
    }
  ],
  "reference": "CERTA-2009-AVI-203",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2009-05-28T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    }
  ],
  "summary": "Plusieurs vuln\u00e9rabilit\u00e9s de la biblioth\u00e8que libsndfile permettent \u00e0 un\nutilisateur malveillant d\u0027ex\u00e9cuter \u00e0 distance du code arbitraire sur le\nsyst\u00e8me vuln\u00e9rable.\n",
  "title": "Vuln\u00e9rabilit\u00e9s de libsndfile",
  "vendor_advisories": []
}

FKIE_CVE-2009-1791

Vulnerability from fkie_nvd - Published: 2009-05-26 17:30 - Updated: 2025-04-09 00:30

Severity ?

Summary

References

URL	Tags
cve@mitre.org	http://secunia.com/advisories/35076	Vendor Advisory
cve@mitre.org	http://secunia.com/advisories/35247
cve@mitre.org	http://secunia.com/advisories/35443
cve@mitre.org	http://security.gentoo.org/glsa/glsa-200905-09.xml
cve@mitre.org	http://www.debian.org/security/2009/dsa-1814
cve@mitre.org	http://www.mandriva.com/security/advisories?name=MDVSA-2009:132
cve@mitre.org	http://www.mega-nerd.com/erikd/Blog/CodeHacking/libsndfile/	Patch, Vendor Advisory
cve@mitre.org	http://www.mega-nerd.com/libsndfile/	Patch, Vendor Advisory
cve@mitre.org	http://www.securityfocus.com/bid/34978	Patch
cve@mitre.org	http://www.vupen.com/english/advisories/2009/1324	Patch, Vendor Advisory
cve@mitre.org	https://exchange.xforce.ibmcloud.com/vulnerabilities/50541
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/35076	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/35247
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/35443
af854a3a-2127-422b-91ae-364da2661108	http://security.gentoo.org/glsa/glsa-200905-09.xml
af854a3a-2127-422b-91ae-364da2661108	http://www.debian.org/security/2009/dsa-1814
af854a3a-2127-422b-91ae-364da2661108	http://www.mandriva.com/security/advisories?name=MDVSA-2009:132
af854a3a-2127-422b-91ae-364da2661108	http://www.mega-nerd.com/erikd/Blog/CodeHacking/libsndfile/	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.mega-nerd.com/libsndfile/	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/34978	Patch
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2009/1324	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	https://exchange.xforce.ibmcloud.com/vulnerabilities/50541

Impacted products

Vendor	Product	Version
mega-nerd	libsndfile	1.0.15
mega-nerd	libsndfile	1.0.16
mega-nerd	libsndfile	1.0.17
mega-nerd	libsndfile	1.0.18
mega-nerd	libsndfile	1.0.19
nullsoft	winamp	5.5
nullsoft	winamp	5.51
nullsoft	winamp	5.52
nullsoft	winamp	5.54
nullsoft	winamp	5.55
nullsoft	winamp	5.541
nullsoft	winamp	5.552

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:mega-nerd:libsndfile:1.0.15:*:*:*:*:*:*:*",
              "matchCriteriaId": "570D85F0-F757-488A-A059-54BF0810F1E0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:mega-nerd:libsndfile:1.0.16:*:*:*:*:*:*:*",
              "matchCriteriaId": "E28BC682-E6B1-4A63-9734-FDB6019B9AE0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:mega-nerd:libsndfile:1.0.17:*:*:*:*:*:*:*",
              "matchCriteriaId": "8823A84B-4694-4838-A877-AE66400B26BD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:mega-nerd:libsndfile:1.0.18:*:*:*:*:*:*:*",
              "matchCriteriaId": "D4C2B0D1-AE8A-4978-85B0-C5E0ABE89E79",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:mega-nerd:libsndfile:1.0.19:*:*:*:*:*:*:*",
              "matchCriteriaId": "759BBF60-8964-4590-A5EB-F21EB4049E39",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:nullsoft:winamp:5.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "4E02CCF2-2335-4F08-8061-6CFD7C8B265A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:nullsoft:winamp:5.51:*:*:*:*:*:*:*",
              "matchCriteriaId": "8FEE5A4C-770A-458B-AC1A-8F1F99A0951A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:nullsoft:winamp:5.52:*:*:*:*:*:*:*",
              "matchCriteriaId": "B58E9493-556E-4085-B337-AE211A28DA6C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:nullsoft:winamp:5.54:*:*:*:*:*:*:*",
              "matchCriteriaId": "1C6E95D5-D855-4CD4-B44B-66FF029EC823",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:nullsoft:winamp:5.55:*:*:*:*:*:*:*",
              "matchCriteriaId": "218E9850-70F5-4579-9549-47DD16ECD2B3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:nullsoft:winamp:5.541:*:*:*:*:*:*:*",
              "matchCriteriaId": "951898A7-A060-4853-8C4E-99927794C0FC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:nullsoft:winamp:5.552:*:*:*:*:*:*:*",
              "matchCriteriaId": "5DA20F35-AC57-4B5B-9EF1-8A4393BD1B33",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Heap-based buffer overflow in aiff_read_header in libsndfile 1.0.15 through 1.0.19, as used in Winamp 5.552 and possibly other media programs, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via an AIFF file with an invalid header value."
    },
    {
      "lang": "es",
      "value": "Desbordamiento de b\u00fafer basado en mont\u00edculo en aiff_read_header en libsndfile desde v1.0.15 hasta v1.0.19, como se utiliza en Winamp v5.552 y posiblemente otros programas multimedia, permite a atacantes remotos producir una denegaci\u00f3n (ca\u00edda de aplicaci\u00f3n) y posiblemente la ejecuci\u00f3n de c\u00f3digo de modo arbitrario a trav\u00e9s de un fichero AIFF con un valor de cabecera no valido."
    }
  ],
  "id": "CVE-2009-1791",
  "lastModified": "2025-04-09T00:30:58.490",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 9.3,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 8.6,
        "impactScore": 10.0,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": true
      }
    ]
  },
  "published": "2009-05-26T17:30:02.063",
  "references": [
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/35076"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/35247"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/35443"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://security.gentoo.org/glsa/glsa-200905-09.xml"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.debian.org/security/2009/dsa-1814"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:132"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.mega-nerd.com/erikd/Blog/CodeHacking/libsndfile/"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.mega-nerd.com/libsndfile/"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch"
      ],
      "url": "http://www.securityfocus.com/bid/34978"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.vupen.com/english/advisories/2009/1324"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/50541"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/35076"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/35247"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/35443"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://security.gentoo.org/glsa/glsa-200905-09.xml"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.debian.org/security/2009/dsa-1814"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:132"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.mega-nerd.com/erikd/Blog/CodeHacking/libsndfile/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.mega-nerd.com/libsndfile/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "http://www.securityfocus.com/bid/34978"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.vupen.com/english/advisories/2009/1324"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/50541"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-119"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GSD-2009-1791

Vulnerability from gsd - Updated: 2023-12-13 01:19

Details

Aliases

CVE-2009-1791

Aliases

CVE-2009-1791

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2009-1791",
    "description": "Heap-based buffer overflow in aiff_read_header in libsndfile 1.0.15 through 1.0.19, as used in Winamp 5.552 and possibly other media programs, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via an AIFF file with an invalid header value.",
    "id": "GSD-2009-1791",
    "references": [
      "https://www.suse.com/security/cve/CVE-2009-1791.html",
      "https://www.debian.org/security/2009/dsa-1814"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2009-1791"
      ],
      "details": "Heap-based buffer overflow in aiff_read_header in libsndfile 1.0.15 through 1.0.19, as used in Winamp 5.552 and possibly other media programs, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via an AIFF file with an invalid header value.",
      "id": "GSD-2009-1791",
      "modified": "2023-12-13T01:19:48.482668Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2009-1791",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Heap-based buffer overflow in aiff_read_header in libsndfile 1.0.15 through 1.0.19, as used in Winamp 5.552 and possibly other media programs, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via an AIFF file with an invalid header value."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "MDVSA-2009:132",
            "refsource": "MANDRIVA",
            "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:132"
          },
          {
            "name": "http://www.mega-nerd.com/libsndfile/",
            "refsource": "CONFIRM",
            "url": "http://www.mega-nerd.com/libsndfile/"
          },
          {
            "name": "ADV-2009-1324",
            "refsource": "VUPEN",
            "url": "http://www.vupen.com/english/advisories/2009/1324"
          },
          {
            "name": "http://www.mega-nerd.com/erikd/Blog/CodeHacking/libsndfile/",
            "refsource": "CONFIRM",
            "url": "http://www.mega-nerd.com/erikd/Blog/CodeHacking/libsndfile/"
          },
          {
            "name": "35247",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/35247"
          },
          {
            "name": "DSA-1814",
            "refsource": "DEBIAN",
            "url": "http://www.debian.org/security/2009/dsa-1814"
          },
          {
            "name": "libsndfile-aiff-voc-bo(50541)",
            "refsource": "XF",
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/50541"
          },
          {
            "name": "35076",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/35076"
          },
          {
            "name": "GLSA-200905-09",
            "refsource": "GENTOO",
            "url": "http://security.gentoo.org/glsa/glsa-200905-09.xml"
          },
          {
            "name": "34978",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/34978"
          },
          {
            "name": "35443",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/35443"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:mega-nerd:libsndfile:1.0.16:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:mega-nerd:libsndfile:1.0.15:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:nullsoft:winamp:5.552:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:mega-nerd:libsndfile:1.0.19:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:nullsoft:winamp:5.51:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:nullsoft:winamp:5.52:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:mega-nerd:libsndfile:1.0.18:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:mega-nerd:libsndfile:1.0.17:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:nullsoft:winamp:5.5:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:nullsoft:winamp:5.55:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:nullsoft:winamp:5.54:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:nullsoft:winamp:5.541:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2009-1791"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Heap-based buffer overflow in aiff_read_header in libsndfile 1.0.15 through 1.0.19, as used in Winamp 5.552 and possibly other media programs, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via an AIFF file with an invalid header value."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-119"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://www.mega-nerd.com/libsndfile/",
              "refsource": "CONFIRM",
              "tags": [
                "Patch",
                "Vendor Advisory"
              ],
              "url": "http://www.mega-nerd.com/libsndfile/"
            },
            {
              "name": "34978",
              "refsource": "BID",
              "tags": [
                "Patch"
              ],
              "url": "http://www.securityfocus.com/bid/34978"
            },
            {
              "name": "http://www.mega-nerd.com/erikd/Blog/CodeHacking/libsndfile/",
              "refsource": "CONFIRM",
              "tags": [
                "Patch",
                "Vendor Advisory"
              ],
              "url": "http://www.mega-nerd.com/erikd/Blog/CodeHacking/libsndfile/"
            },
            {
              "name": "ADV-2009-1324",
              "refsource": "VUPEN",
              "tags": [
                "Patch",
                "Vendor Advisory"
              ],
              "url": "http://www.vupen.com/english/advisories/2009/1324"
            },
            {
              "name": "35076",
              "refsource": "SECUNIA",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://secunia.com/advisories/35076"
            },
            {
              "name": "35247",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/35247"
            },
            {
              "name": "GLSA-200905-09",
              "refsource": "GENTOO",
              "tags": [],
              "url": "http://security.gentoo.org/glsa/glsa-200905-09.xml"
            },
            {
              "name": "MDVSA-2009:132",
              "refsource": "MANDRIVA",
              "tags": [],
              "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:132"
            },
            {
              "name": "DSA-1814",
              "refsource": "DEBIAN",
              "tags": [],
              "url": "http://www.debian.org/security/2009/dsa-1814"
            },
            {
              "name": "35443",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/35443"
            },
            {
              "name": "libsndfile-aiff-voc-bo(50541)",
              "refsource": "XF",
              "tags": [],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/50541"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 9.3,
            "confidentialityImpact": "COMPLETE",
            "integrityImpact": "COMPLETE",
            "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          "exploitabilityScore": 8.6,
          "impactScore": 10.0,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "HIGH",
          "userInteractionRequired": true
        }
      },
      "lastModifiedDate": "2017-08-17T01:30Z",
      "publishedDate": "2009-05-26T17:30Z"
    }
  }
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2009-1791 (GCVE-0-2009-1791)

GHSA-5XQ8-86QP-X5Q2

CERTA-2009-AVI-203

Description

Solution

CERTA-2009-AVI-203

Description

Solution

FKIE_CVE-2009-1791

GSD-2009-1791

Tags

Sightings

Nomenclature