Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2004-0557

9 documents8 sources
Severity
10.0CRITICAL
EPSS
48.5%
top 2.25%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
6
Conectiva LinuxGentoo LinuxRedhat Enterprise Linux+3 more
Timeline
PublishedAug 6
Latest updateApr 29

Description

Multiple buffer overflows in the st_wavstartread function in wav.c for Sound eXchange (SoX) 12.17.2 through 12.17.4 allow remote attackers to execute arbitrary code via certain WAV file header fields.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages6 packages

Debiansox< 12.17.4-9+2
NVDsox/sox12.17.2, 12.17.3, 12.17.4+2
NVDgentoo/linux1.4
NVDconectiva/linux10.0, 8.0, 9.0+2
NVDredhat/fedora_corecore_1.0, core_2.0+1

Also affects: Enterprise Linux 3.0

Patches

Patch: www.redhat.comPatch: www.securityfocus.comPatch: www.redhat.com

🔴Vulnerability Details

3
GHSA
GHSA-xxf9-f548-r28c: Multiple buffer overflows in the st_wavstartread function in wav2022-04-29
OSV
CVE-2004-0557: Multiple buffer overflows in the st_wavstartread function in wav2004-08-06
CVEList
CVE-2004-0557: Multiple buffer overflows in the st_wavstartread function in wav2004-08-02

💥Exploits & PoCs

2
Exploit-DB
SoX - '.wav' Local Buffer Overflow2004-08-04
Exploit-DB
SoX - Local Buffer Overflow2004-08-01

📋Vendor Advisories

2
Red Hat
security flaw2004-07-28
Debian
CVE-2004-0557: sox - Multiple buffer overflows in the st_wavstartread function in wav.c for Sound eXc...2004

💬Community

1
Bugzilla
CVE-2004-0557 security flaw2018-08-16
CVE-2004-0557 (CRITICAL CVSS 10) | Multiple buffer overflows in the st | cvebase.io