FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

vorbis-tools -- Speex header processing vulnerability

Affected packages
vorbis-tools < 1.2.0_2,3

Details

VuXML ID 633716fa-1f8f-11dd-b143-0211d880e350
Discovery 2008-04-18
Entry 2008-05-11

Secunia reports:

A vulnerability has been reported in vorbis-tools, which can potentially be exploited by malicious people to compromise a user's system.

The vulnerability is caused due to an input validation error when processing Speex headers, which can be exploited via a specially crafted Speex stream containing a negative "modeID" field in the header.

Successful exploitation may allow execution of arbitrary code.

References

CVE Name CVE-2008-1686
URL http://secunia.com/advisories/29882/