A global buffer overflow was discovered in the iteration_loop function in loop.c in BladeEnc version 0.94.2. The vulnerability causes an out-of-bounds write, which leads to remote denial of service or possibly code execution.
Max CVSS
9.8
EPSS Score
4.35%
Published
2017-09-21
Updated
2023-02-01
Integer signedness error in the myFseek function of samplein.c for Blade encoder (BladeEnc) 0.94.2 and earlier allows remote attackers to execute arbitrary code via a negative offset value following a "fmt" wave chunk.
Max CVSS
7.5
EPSS Score
7.24%
Published
2003-02-19
Updated
2016-10-18
2 vulnerabilities found