Denial of Service Vulnerability in libvorbis 1.3.5 via Crafted WAV File

Denial of Service Vulnerability in libvorbis 1.3.5 via Crafted WAV File

CVE-2017-11333 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:N/A:P

The vorbis_analysis_wrote function in lib/block.c in Xiph.Org libvorbis 1.3.5 allows remote attackers to cause a denial of service (OOM) via a crafted wav file.

Learn more about our Web Application Penetration Testing UK.