cbcvebase.
CVE-2007-3106
published 2007-07-26

CVE-2007-3106: lib/info.c in libvorbis 1.1.2, and possibly other versions before 1.2.0, allows context-dependent attackers to cause a denial of service and possibly execute…

PriorityP426medium6.8CVSS 2.0
AVNACMAuNCPIPAP
EPSS
3.14%
86.3th percentile
lib/info.c in libvorbis 1.1.2, and possibly other versions before 1.2.0, allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via invalid (1) blocksize_0 and (2) blocksize_1 values, which trigger a "heap overwrite" in the _01inverse function in res0.c. NOTE: this issue has been RECAST so that CVE-2007-4029 handles additional vectors.

Affected

8 ranges
VendorProductVersion rangeFixed in
debianlibvorbis< libvorbis 1.2.0.dfsg-1 (bookworm)libvorbis 1.2.0.dfsg-1 (bookworm)
debianlibvorbisidec< libvorbis 1.2.0.dfsg-1 (bookworm)libvorbis 1.2.0.dfsg-1 (bookworm)
libvorbislibvorbis<= 1.2.0
libvorbislibvorbis
xiph.orglibvorbis>= 0 < 1.2.0.dfsg-11.2.0.dfsg-1
xiph.orglibvorbis>= 0 < 1.2.0.dfsg-11.2.0.dfsg-1
xiph.orglibvorbis>= 0 < 1.2.0.dfsg-11.2.0.dfsg-1
xiph.orglibvorbis>= 0 < 1.2.0.dfsg-11.2.0.dfsg-1

CVSS provenance

nvdv2.06.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
osv6.8MEDIUM
vendor_debian6.8MEDIUM
vendor_redhat6.8MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.