Audacity Buffer Overflow Vulnerability (Win) Network Vulnerability

Summary

This host has Audacity installed and is prone to Buffer Overflow vulnerability.

Impact

Attacker may leverage this issue by executing arbitrary script code on the affected application, and can cause denial of service. Impact Level: Application

Solution

Upgrade to version 1.3.6 or latest http://audacity.sourceforge.net/

Insight

Error in the String_parse::get_nonspace_quoted function in lib-src/allegro/strparse.cpp file that fails to validate user input data.

Affected

Audacity version prior to 1.3.6 on Windows.

References

http://secunia.com/advisories/33356

Updated on 2017-03-28

Severity

Classification

CVE CVE-2009-0490

CVSS	Base Score: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Apple iTunes 'itms:' URI Stack Buffer Overflow Vulnerability
BigAntSoft BigAnt IM Message Server Multiple Vulnerabilities
Beatport Player '.m3u' File Buffer Overflow Vulnerability
Adobe Flash Player Buffer Overflow Vulnerability (Linux)
DATAC RealWin SCADA Server On_FC_CONNECT_FCS_a_FILE Buffer Overflow Vulnerability

Take action and discover your vulnerabilities