Surina : Security Vulnerabilities, CVEs, Published In 2018 CVSS score >= 6
soundtouch version up to and including 2.0.0 contains a Buffer Overflow vulnerability in SoundStretch/WavFile.cpp:WavInFile::readHeaderBlock() that can result in arbitrary code execution. This attack appear to be exploitable via victim must open maliocius file in soundstretch utility.
Max CVSS
8.8
EPSS Score
0.22%
Published
2018-08-20
Updated
2018-10-15
The WavFileBase class in WavFile.cpp in Olli Parviainen SoundTouch 2.0 allows remote attackers to cause a denial of service (heap corruption from size inconsistency) or possibly have unspecified other impact, as demonstrated by SoundStretch.
Max CVSS
8.8
EPSS Score
0.79%
Published
2018-09-16
Updated
2020-08-24
The WavFileBase class in WavFile.cpp in Olli Parviainen SoundTouch 2.0 allows remote attackers to cause a denial of service (double free) or possibly have unspecified other impact, as demonstrated by SoundStretch.
Max CVSS
8.8
EPSS Score
0.79%
Published
2018-09-16
Updated
2018-11-08
The BPMDetect class in BPMDetect.cpp in libSoundTouch.a in Olli Parviainen SoundTouch 2.0 allows remote attackers to cause a denial of service (assertion failure and application exit), as demonstrated by SoundStretch.
Max CVSS
6.5
EPSS Score
0.10%
Published
2018-09-16
Updated
2019-10-03
The FIRFilter::evaluateFilterMulti function in FIRFilter.cpp in libSoundTouch.a in Olli Parviainen SoundTouch 2.0 allows remote attackers to cause a denial of service (assertion failure and application exit), as demonstrated by SoundStretch.
Max CVSS
7.5
EPSS Score
0.17%
Published
2018-07-13
Updated
2019-10-03
The RateTransposer::setChannels function in RateTransposer.cpp in libSoundTouch.a in Olli Parviainen SoundTouch 2.0 allows remote attackers to cause a denial of service (assertion failure and application exit), as demonstrated by SoundStretch.
Max CVSS
7.5
EPSS Score
0.17%
Published
2018-07-13
Updated
2019-10-03
6 vulnerabilities found