NVD

Id
43462  
Name
CVE-2012-1584  
Description
Integer overflow in the mid function in toolkit/tbytevector.cpp in TagLib 1.7 and earlier allows context-dependent attackers to cause a denial of service (application crash) via a crafted file header field in a media file, which triggers a large memory allocation.  
Reject
 
CVSS Version
2  
CVSS Score
4.3  
Severity
Medium  
CVSS Base Score
4.3  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:N/I:N/A:P)  
Pub Date
2017-01-19  
Published
2012-09-06  
Modified Date
2013-01-29  
Seq
2012-1584  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
218416 43462 CVE-2012-1584 [pipermail] 20120304 multiple security vulnerabilities in taglib  View
218417 43462 CVE-2012-1584 [pipermail] 20120305 multiple security vulnerabilities in taglib  View
218418 43462 CVE-2012-1584 GLSA-201206-16  View
218419 43462 CVE-2012-1584 [oss-security] 20120305 Re: CVE-Request taglib vulnerabilities  View
218420 43462 CVE-2012-1584 [oss-security] 20120321 Re: CVE-Request taglib vulnerabilities  View
218421 43462 CVE-2012-1584 [oss-security] 20120326 Re: CVE-Request taglib vulnerabilities  View
218422 43462 CVE-2012-1584 52290  View
218423 43462 CVE-2012-1584 taglib-mid-dos(78909)  View
218424 43462 CVE-2012-1584 https://github.com/taglib/taglib/commit/dcdf4fd954e3213c355746fa15b7480461972308  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
28463 JVNDB-2012-004170 TagLib の toolkit/tbytevector.cpp における整数オーバーフローの脆弱性 TagLib の toolkit/tbytevector.cpp 内の mid 関数には、整数オーバーフローの脆弱性が存在します。 CVE-2012-1584 54822 CVE-2012-1584 43462 4.3 http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004170.html 2012-09-06 2012-09-11 View