Heap-based Buffer Overflow in Expand3To4Module::run in audiofile 0.3.x

Heap-based Buffer Overflow in Expand3To4Module::run in audiofile 0.3.x

CVE-2018-17095 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

An issue has been discovered in mpruett Audio File Library (aka audiofile) 0.3.6, 0.3.5, 0.3.4, 0.3.3, 0.3.2, 0.3.1, 0.3.0. A heap-based buffer overflow in Expand3To4Module::run has occurred when running sfconvert.

Learn more about our Web Application Penetration Testing UK.