Vulnerabilities (CVE)

Filtered by vendor Csounds Subscribe
Total 4 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2012-2107 1 Csounds 1 Csound 2024-02-28 9.3 HIGH N/A
Integer overflow in the main function in util/lpci_main.c in Csound before 5.17.2, when converting a file, allows user-assisted remote attackers to execute arbitrary code via a crafted file, which triggers a heap-based buffer overflow.
CVE-2012-2106 1 Csounds 1 Csound 2024-02-28 9.3 HIGH N/A
Integer overflow in the pv_import function in util/pv_import.c in Csound 5.16.6, when converting a file, allows remote attackers to execute arbitrary code via a crafted file, which triggers a heap-based buffer overflow.
CVE-2012-2108 1 Csounds 1 Csound 2024-02-28 9.3 HIGH N/A
Stack-based buffer overflow in the main function in util/lpci_main.c in Csound before 5.17.2, when converting a file, allows user-assisted remote attackers to execute arbitrary code via a crafted file.
CVE-2012-0270 1 Csounds 1 Csound 2024-02-28 7.5 HIGH N/A
Multiple stack-based buffer overflows in Csound before 5.16.6 allow remote attackers to execute arbitrary code via a crafted (1) hetro file to the getnum function in util/heti_main.c or (2) PVOC file to the getnum function in util/pv_import.c.