Buffer Overflow Vulnerability in SoundTouch 2.0.0: Arbitrary Code Execution via SoundStretch/WavFile.cpp

Buffer Overflow Vulnerability in SoundTouch 2.0.0: Arbitrary Code Execution via SoundStretch/WavFile.cpp

CVE-2018-1000223 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

soundtouch version up to and including 2.0.0 contains a Buffer Overflow vulnerability in SoundStretch/WavFile.cpp:WavInFile::readHeaderBlock() that can result in arbitrary code execution. This attack appear to be exploitable via victim must open maliocius file in soundstretch utility.

Learn more about our Web Application Penetration Testing UK.