Denial of Service Vulnerability in TagLib 1.7 and Earlier

Denial of Service Vulnerability in TagLib 1.7 and Earlier

CVE-2012-1107 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:N/A:P

The analyzeCurrent function in ape/apeproperties.cpp in TagLib 1.7 and earlier allows context-dependent attackers to cause a denial of service (application crash) via a crafted sampleRate in an ape file, which triggers a divide-by-zero error.

Learn more about our Web Application Penetration Testing UK.