CVE-2009-1788
published 2009-05-26CVE-2009-1788: Heap-based buffer overflow in voc_read_header in libsndfile 1.0.15 through 1.0.19, as used in Winamp 5.552 and possibly other media programs, allows remote…
PriorityP339critical9.3CVSS 2.0
AVNACMAuNCCICAC
EPSS
8.23%
94.2th percentile
Heap-based buffer overflow in voc_read_header in libsndfile 1.0.15 through 1.0.19, as used in Winamp 5.552 and possibly other media programs, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a VOC file with an invalid header value.
Affected
17 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | libsndfile | < libsndfile 1.0.20-1 (bookworm) | libsndfile 1.0.20-1 (bookworm) |
| libsndfile_project | libsndfile | >= 0 < 1.0.20-1 | 1.0.20-1 |
| libsndfile_project | libsndfile | >= 0 < 1.0.20-1 | 1.0.20-1 |
| libsndfile_project | libsndfile | >= 0 < 1.0.20-1 | 1.0.20-1 |
| libsndfile_project | libsndfile | >= 0 < 1.0.20-1 | 1.0.20-1 |
| mega-nerd | libsndfile | — | — |
| mega-nerd | libsndfile | — | — |
| mega-nerd | libsndfile | — | — |
| mega-nerd | libsndfile | — | — |
| mega-nerd | libsndfile | — | — |
| nullsoft | winamp | — | — |
| nullsoft | winamp | — | — |
| nullsoft | winamp | — | — |
| nullsoft | winamp | — | — |
| nullsoft | winamp | — | — |
| nullsoft | winamp | — | — |
| nullsoft | winamp | — | — |
CVSS provenance
nvdv2.09.3CRITICALAV:N/AC:M/Au:N/C:C/I:C/A:C
osv9.3CRITICAL
vendor_debian9.3LOW
vendor_redhat9.3CRITICAL
vendor_ubuntu9.3CRITICAL
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
libsndfile vulnerabilities
vendor_ubuntu·2009-10-15·CVSS 9.3
CVE-2009-1788 [CRITICAL] libsndfile vulnerabilities
Title: libsndfile vulnerabilities
Summary: libsndfile vulnerabilities
Tobias Klein discovered a heap-based buffer overflow in libsndfile. If a
user or automated system processed a crafted VOC file, an attacker could
cause a denial of service via application crash, or possibly execute
arbitrary code with the privileges of the user invoking the program.
(CVE-2009-1788)
Erik de Castro Lopo discovered a similar heap-based buffer overflow when
processing AIFF files. If a user or automated system processed a crafted
AIFF file, an attacker could cause a denial of service via application
crash, or possibly execute arbitrary code with the privileges of the user
invoking the program. (CVE-2009-1791)
Instructions: After a standard system upgrade you need to restart your session to effect
the nece
Red Hat
libsndfile VOC file heap based buffer overflow
vendor_redhat·2009-05-15·CVSS 9.3
CVE-2009-1788 [CRITICAL] CWE-122 libsndfile VOC file heap based buffer overflow
libsndfile VOC file heap based buffer overflow
Heap-based buffer overflow in voc_read_header in libsndfile 1.0.15 through 1.0.19, as used in Winamp 5.552 and possibly other media programs, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a VOC file with an invalid header value.
Debian
CVE-2009-1788: libsndfile - Heap-based buffer overflow in voc_read_header in libsndfile 1.0.15 through 1.0.1...
vendor_debian·2009·CVSS 9.3
CVE-2009-1788 [CRITICAL] CVE-2009-1788: libsndfile - Heap-based buffer overflow in voc_read_header in libsndfile 1.0.15 through 1.0.1...
Heap-based buffer overflow in voc_read_header in libsndfile 1.0.15 through 1.0.19, as used in Winamp 5.552 and possibly other media programs, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a VOC file with an invalid header value.
Scope: local
bookworm: resolved (fixed in 1.0.20-1)
bullseye: resolved (fixed in 1.0.20-1)
forky: resolved (fixed in 1.0.20-1)
sid: resolved (fixed in 1.0.20-1)
trixie: resolved (fixed in 1.0.20-1)
GHSA
GHSA-6589-vpjv-7v45: Heap-based buffer overflow in voc_read_header in libsndfile 1
ghsa_unreviewed·2022-05-02
CVE-2009-1788 [HIGH] CWE-119 GHSA-6589-vpjv-7v45: Heap-based buffer overflow in voc_read_header in libsndfile 1
Heap-based buffer overflow in voc_read_header in libsndfile 1.0.15 through 1.0.19, as used in Winamp 5.552 and possibly other media programs, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a VOC file with an invalid header value.
OSV
CVE-2009-1788: Heap-based buffer overflow in voc_read_header in libsndfile 1
osv·2009-05-26·CVSS 9.3
CVE-2009-1788 [CRITICAL] CVE-2009-1788: Heap-based buffer overflow in voc_read_header in libsndfile 1
Heap-based buffer overflow in voc_read_header in libsndfile 1.0.15 through 1.0.19, as used in Winamp 5.552 and possibly other media programs, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a VOC file with an invalid header value.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2009-1788 CVE-2009-1791 Multiple libsndfile vulnerabilities [Fedora epel-5]
bugzilla·2010-12-20·CVSS 9.3
CVE-2009-1788 [CRITICAL] CVE-2009-1788 CVE-2009-1791 Multiple libsndfile vulnerabilities [Fedora epel-5]
CVE-2009-1788 CVE-2009-1791 Multiple libsndfile vulnerabilities [Fedora epel-5]
+++ This bug was initially created as a clone of Bug #502661 +++
This is an automatically created tracking bug! It was created to ensure that one or more security vulnerabilities are fixed in all affected branches.
You should *not* refer to this bug publicly, as it is a private "Fedora Project Contributors" bug.
For comments that are specific to the vulnerability please use bugs filed against "Security Response" product referenced in "Blocks" field.
bug #502657: CVE-2009-1788 libsndfile VOC file heap based buffer overflow
bug #502658: CVE-2009-1791 libsndfile AIFF file heap based buffer overflow
Please close this bug with RAWHIDE (referencing appropriate N-V-R in Fixed In field if possible) once is it fix
Bugzilla
CVE-2009-1788 libsndfile VOC file heap based buffer overflow
bugzilla·2009-05-26·CVSS 9.3
CVE-2009-1788 [CRITICAL] CVE-2009-1788 libsndfile VOC file heap based buffer overflow
CVE-2009-1788 libsndfile VOC file heap based buffer overflow
Common Vulnerabilities and Exposures assigned an identifier CVE-2009-1788 to the following vulnerability:
Heap-based buffer overflow in voc_read_header in libsndfile 1.0.15
through 1.0.19, as used in Winamp 5.552 and possibly other media
programs, allows remote attackers to cause a denial of service
(application crash) and possibly execute arbitrary code via a VOC file
with an invalid header value.
Discussion:
*** Bug 501053 has been marked as a duplicate of this bug. ***
---
Link to original Tobias Klein's advisory:
http://trapkit.de/advisories/TKADV2009-006.txt
Issue was fixed upstream in 1.0.20:
http://www.mega-nerd.com/erikd/Blog/CodeHacking/libsndfile/rel_20.html
Upstream also created patches for few recent versions
http://secunia.com/advisories/35076http://secunia.com/advisories/35126http://secunia.com/advisories/35247http://secunia.com/advisories/35443http://security.gentoo.org/glsa/glsa-200905-09.xmlhttp://trapkit.de/advisories/TKADV2009-006.txthttp://www.debian.org/security/2009/dsa-1814http://www.mandriva.com/security/advisories?name=MDVSA-2009:132http://www.mega-nerd.com/erikd/Blog/CodeHacking/libsndfile/http://www.mega-nerd.com/libsndfile/http://www.securityfocus.com/bid/34978http://www.vupen.com/english/advisories/2009/1324http://www.vupen.com/english/advisories/2009/1348https://exchange.xforce.ibmcloud.com/vulnerabilities/50541https://exchange.xforce.ibmcloud.com/vulnerabilities/50827http://secunia.com/advisories/35076http://secunia.com/advisories/35126http://secunia.com/advisories/35247http://secunia.com/advisories/35443http://security.gentoo.org/glsa/glsa-200905-09.xmlhttp://trapkit.de/advisories/TKADV2009-006.txthttp://www.debian.org/security/2009/dsa-1814http://www.mandriva.com/security/advisories?name=MDVSA-2009:132http://www.mega-nerd.com/erikd/Blog/CodeHacking/libsndfile/http://www.mega-nerd.com/libsndfile/http://www.securityfocus.com/bid/34978http://www.vupen.com/english/advisories/2009/1324http://www.vupen.com/english/advisories/2009/1348https://exchange.xforce.ibmcloud.com/vulnerabilities/50541https://exchange.xforce.ibmcloud.com/vulnerabilities/50827
2009-05-26
Published