1. Home
  2. CVE Database
  3. CVE-2007-3106
MEDIUM · 6.8

CVE-2007-3106

lib/info.c in libvorbis 1.1.2, and possibly other versions before 1.2.0, allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via invalid (1) blocksize_0...

Vulnerability Description

lib/info.c in libvorbis 1.1.2, and possibly other versions before 1.2.0, allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via invalid (1) blocksize_0 and (2) blocksize_1 values, which trigger a "heap overwrite" in the _01inverse function in res0.c. NOTE: this issue has been RECAST so that CVE-2007-4029 handles additional vectors.

CVSS Score

6.8

MEDIUM

AV:N/AC:M/Au:N/C:P/I:P/A:P
Confidentiality
PARTIAL
Integrity
PARTIAL
Availability
PARTIAL

Affected Products

VendorProductVersions
RpathRpath Linux1
LibvorbisLibvorbis<= 1.2.0

Related Weaknesses (CWE)

CWE-399

References

FAQ

What is CVE-2007-3106?

CVE-2007-3106 is a vulnerability with a CVSS score of 6.8 (MEDIUM). lib/info.c in libvorbis 1.1.2, and possibly other versions before 1.2.0, allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via invalid (1) blocksize_0...

How severe is CVE-2007-3106?

CVE-2007-3106 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2007-3106?

Check the references section above for vendor advisories and patch information. Affected products include: Rpath Rpath Linux, Libvorbis Libvorbis.