Back

CVE-2024-33428

May 1, 2024, 7:50 p.m.

Awaiting Analysis
CVE has been marked for Analysis. Normally once in this state the CVE will be analyzed by NVD staff within 24 hours.

Products

stsaz phiola

  • 2.0-rc22

Source

cve@mitre.org

Tags

2024-05-01
cve@mitre.org
CVE-2024-33428

CVE-2024-33428 details

Published : May 1, 2024, 7:15 p.m.
Last Modified : May 1, 2024, 7:50 p.m.

Description

Buffer-Overflow vulnerability at conv.c:68 of stsaz phiola v2.0-rc22 allows a remote attacker to execute arbitrary code via the a crafted .wav file.

CVSS Score

1 2 3 4 5 6 7 8 9 10

Weakness

Weakness Name Description

References

URL Source
https://github.com/Helson-S/FuzzyTesting/blob/master/phiola/heap-buffer-overflow-1/heap-buffer-overflow-1.assets/image-20240420005017430.png cve@mitre.org
https://github.com/Helson-S/FuzzyTesting/blob/master/phiola/heap-buffer-overflow-1/heap-buffer-overflow-1.md cve@mitre.org
https://github.com/Helson-S/FuzzyTesting/blob/master/phiola/heap-buffer-overflow-1/poc cve@mitre.org
https://github.com/Helson-S/FuzzyTesting/tree/master/phiola/heap-buffer-overflow-1 cve@mitre.org
https://github.com/stsaz/phiola/issues/29 cve@mitre.org
This website uses the NVD API, but is not approved or certified by it.