Shodan
Vulnerabilities
Vulnerable Software
Mp3gain:  >> Mp3gain  Security Vulnerabilities
CVE-2018-10776
The getbits function in mpglibDBL/common.c in mp3gain through 1.5.2-r2 allows remote attackers to cause a denial of service (segmentation fault and application crash) or possibly have unspecified other impact.
CVSS Score
7.8
EPSS Score
0.003
Published
2018-05-07
CVE-2018-10777
Buffer overflow in the WriteMP3GainAPETag function in apetag.c in mp3gain through 1.5.2-r2 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact.
CVSS Score
7.8
EPSS Score
0.003
Published
2018-05-07
CVE-2018-10778
Read access violation in the III_dequantize_sample function in mpglibDBL/layer3.c in mp3gain through 1.5.2-r2 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact, a different vulnerability than CVE-2017-9872 and CVE-2017-14409.
CVSS Score
7.8
EPSS Score
0.003
Published
2018-05-07
CVE-2017-14406
A NULL pointer dereference was discovered in sync_buffer in interface.c in mpglibDBL, as used in MP3Gain version 1.5.2. The vulnerability causes a segmentation fault and application crash, which leads to remote denial of service.
CVSS Score
5.5
EPSS Score
0.002
Published
2017-09-13
CVE-2017-14407
A stack-based buffer over-read was discovered in filterYule in gain_analysis.c in MP3Gain version 1.5.2. The vulnerability causes an application crash, which leads to remote denial of service.
CVSS Score
5.5
EPSS Score
0.005
Published
2017-09-13
CVE-2017-14408
A stack-based buffer over-read was discovered in dct36 in layer3.c in mpglibDBL, as used in MP3Gain version 1.5.2. The vulnerability causes an application crash, which leads to remote denial of service.
CVSS Score
5.5
EPSS Score
0.004
Published
2017-09-13
CVE-2017-14409
A buffer overflow was discovered in III_dequantize_sample in layer3.c in mpglibDBL, as used in MP3Gain version 1.5.2. The vulnerability causes an out-of-bounds write, which leads to remote denial of service or possibly code execution.
CVSS Score
7.8
EPSS Score
0.013
Published
2017-09-13
CVE-2017-14410
A buffer over-read was discovered in III_i_stereo in layer3.c in mpglibDBL, as used in MP3Gain version 1.5.2. The vulnerability causes an application crash, which leads to remote denial of service.
CVSS Score
5.5
EPSS Score
0.002
Published
2017-09-13
CVE-2017-14411
A stack-based buffer overflow was discovered in copy_mp in interface.c in mpglibDBL, as used in MP3Gain version 1.5.2. The vulnerability causes an out-of-bounds write, which leads to remote denial of service or possibly code execution.
CVSS Score
7.8
EPSS Score
0.007
Published
2017-09-13
CVE-2017-14412
An invalid memory write was discovered in copy_mp in interface.c in mpglibDBL, as used in MP3Gain version 1.5.2. The vulnerability causes a denial of service (segmentation fault and application crash) or possibly unspecified other impact.
CVSS Score
7.8
EPSS Score
0.002
Published
2017-09-13


Products
Pricing
Contact Us

Shodan ® - All rights reserved