CVE-2011-0615

Sažetak

Multiple buffer overflows in Adobe Audition 3.0.1 and earlier allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via crafted data in unspecified fields in the TRKM chunk in an Audition Session (aka .ses) file, related to inconsistent use of character data types.

Reference

http://www.adobe.com/support/security/bulletins/apsb11-10.html
http://www.coresecurity.com/content/Adobe-Audition-malformed-SES-file
http://www.securityfocus.com/bid/47838

CVSS

Base:	9.3
Impact:	10.0
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:M/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

25-05-2011 - 04:00

Objavljeno

16-05-2011 - 17:55