Denial of Service Vulnerability in SoX 14.4.2 via Crafted SND File Conversion

CVE-2017-11359 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:N/A:P

The wavwritehdr function in wav.c in Sound eXchange (SoX) 14.4.2 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted snd file, during conversion to a wav file.

Learn more about our Cis Benchmark Audit For Microsoft Exchange Server.