Heap-based Buffer Overflow in Csound 5.16.6's pv_import Function

Heap-based Buffer Overflow in Csound 5.16.6's pv_import Function

CVE-2012-2106 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

Integer overflow in the pv_import function in util/pv_import.c in Csound 5.16.6, when converting a file, allows remote attackers to execute arbitrary code via a crafted file, which triggers a heap-based buffer overflow.

Learn more about our Web Application Penetration Testing UK.