Shodan
Vulnerabilities
Vulnerable Software
Surina:  >> Soundtouch  Security Vulnerabilities
CVE-2018-17096
The BPMDetect class in BPMDetect.cpp in libSoundTouch.a in Olli Parviainen SoundTouch 2.0 allows remote attackers to cause a denial of service (assertion failure and application exit), as demonstrated by SoundStretch.
CVSS Score
6.5
EPSS Score
0.005
Published
2018-09-16
CVE-2018-17097
The WavFileBase class in WavFile.cpp in Olli Parviainen SoundTouch 2.0 allows remote attackers to cause a denial of service (double free) or possibly have unspecified other impact, as demonstrated by SoundStretch.
CVSS Score
8.8
EPSS Score
0.013
Published
2018-09-16
CVE-2018-17098
The WavFileBase class in WavFile.cpp in Olli Parviainen SoundTouch 2.0 allows remote attackers to cause a denial of service (heap corruption from size inconsistency) or possibly have unspecified other impact, as demonstrated by SoundStretch.
CVSS Score
8.8
EPSS Score
0.013
Published
2018-09-16
CVE-2018-1000223
soundtouch version up to and including 2.0.0 contains a Buffer Overflow vulnerability in SoundStretch/WavFile.cpp:WavInFile::readHeaderBlock() that can result in arbitrary code execution. This attack appear to be exploitable via victim must open maliocius file in soundstretch utility.
CVSS Score
8.8
EPSS Score
0.006
Published
2018-08-20
CVE-2018-14044
The RateTransposer::setChannels function in RateTransposer.cpp in libSoundTouch.a in Olli Parviainen SoundTouch 2.0 allows remote attackers to cause a denial of service (assertion failure and application exit), as demonstrated by SoundStretch.
CVSS Score
7.5
EPSS Score
0.007
Published
2018-07-13
CVE-2018-14045
The FIRFilter::evaluateFilterMulti function in FIRFilter.cpp in libSoundTouch.a in Olli Parviainen SoundTouch 2.0 allows remote attackers to cause a denial of service (assertion failure and application exit), as demonstrated by SoundStretch.
CVSS Score
7.5
EPSS Score
0.007
Published
2018-07-13
CVE-2017-9258
The TDStretch::processSamples function in source/SoundTouch/TDStretch.cpp in SoundTouch 1.9.2 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a crafted wav file.
CVSS Score
5.5
EPSS Score
0.047
Published
2017-07-27
CVE-2017-9259
The TDStretch::acceptNewOverlapLength function in source/SoundTouch/TDStretch.cpp in SoundTouch 1.9.2 allows remote attackers to cause a denial of service (memory allocation error and application crash) via a crafted wav file.
CVSS Score
5.5
EPSS Score
0.034
Published
2017-07-27
CVE-2017-9260
The TDStretchSSE::calcCrossCorr function in source/SoundTouch/sse_optimized.cpp in SoundTouch 1.9.2 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted wav file.
CVSS Score
5.5
EPSS Score
0.03
Published
2017-07-27


Products
Pricing
Contact Us

Shodan ® - All rights reserved