Stack-based buffer overflow in the main function in util/lpci_main.c in Csound before 5.17.2, when converting a file, allows user-assisted remote attackers to execute arbitrary code via a crafted file.
Max CVSS
9.3
EPSS Score
15.88%
Published
2014-02-04
Updated
2023-02-13
Integer overflow in the main function in util/lpci_main.c in Csound before 5.17.2, when converting a file, allows user-assisted remote attackers to execute arbitrary code via a crafted file, which triggers a heap-based buffer overflow.
Max CVSS
9.3
EPSS Score
7.05%
Published
2014-02-04
Updated
2023-02-13
Integer overflow in the pv_import function in util/pv_import.c in Csound 5.16.6, when converting a file, allows remote attackers to execute arbitrary code via a crafted file, which triggers a heap-based buffer overflow.
Max CVSS
9.3
EPSS Score
7.05%
Published
2014-02-04
Updated
2023-02-13
CVE-2012-0270
Public exploit
Multiple stack-based buffer overflows in Csound before 5.16.6 allow remote attackers to execute arbitrary code via a crafted (1) hetro file to the getnum function in util/heti_main.c or (2) PVOC file to the getnum function in util/pv_import.c.
Max CVSS
7.5
EPSS Score
95.05%
Published
2014-02-17
Updated
2014-02-18
4 vulnerabilities found