ID:3783 - Exploit for Resource exhaustion in SoundTouch - CVE-2017-9259

CSH
CYBERSECURITY HELP
Sign In REGISTER
 
Main Vulnerability Database Exploits ID:3783 - Exploit for Resource exhaustion in SoundTouch - CVE-2017-9259

ID:3783 - Exploit for Resource exhaustion in SoundTouch - CVE-2017-9259

Published: August 9, 2020


Vulnerability identifier: #VU38639
Vulnerability risk: Medium
CVE-ID: CVE-2017-9259
CWE-ID: CWE-400
Exploitation vector: Remote access
Vulnerable software:
SoundTouch

Link to public exploit:


Vulnerability description

The vulnerability allows a remote non-authenticated attacker to perform a denial of service (DoS) attack.

The TDStretch::acceptNewOverlapLength function in source/SoundTouch/TDStretch.cpp in SoundTouch 1.9.2 allows remote attackers to cause a denial of service (memory allocation error and application crash) via a crafted wav file.


Remediation

Install update from vendor's website.