CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-8373

The mad_layer_III function in layer3.c in Underbit MAD libmad 0.15.1b allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted audio file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.007

EPSS Ranking 72.0%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 6.8

References

https://blogs.gentoo.org/ago/2017/04/30/libmad-heap-based-buffer-overflow-in-mad_layer_iii-layer3-c/
https://lists.debian.org/debian-lts-announce/2018/05/msg00011.html
https://www.debian.org/security/2018/dsa-4192
https://blogs.gentoo.org/ago/2017/04/30/libmad-heap-based-buffer-overflow-in-mad_layer_iii-layer3-c/
https://lists.debian.org/debian-lts-announce/2018/05/msg00011.html
https://www.debian.org/security/2018/dsa-4192

Products affected by CVE-2017-8373

Underbit » Mad Libmad » Version: 0.15.1b

cpe:2.3:a:underbit:mad_libmad:0.15.1b

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-8373

Products

Pricing

Contact Us