Stack-based buffer overflow in libsndfile before 1.0.28 via crafted FLAC file

Stack-based buffer overflow in libsndfile before 1.0.28 via crafted FLAC file

CVE-2017-7585 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:N/A:P

In libsndfile before 1.0.28, an error in the "flac_buffer_copy()" function (flac.c) can be exploited to cause a stack-based buffer overflow via a specially crafted FLAC file.

Learn more about our Web Application Penetration Testing UK.