Integer underflow in the Huffman decoding functionality (pvmp3_huffman_parsing.cpp) in OpenCORE 2.0 and earlier allows remote attackers to cause a denial of service (process crash) and possibly execute arbitrary code via a crafted MP3 file that triggers heap corruption.
Max CVSS
6.8
EPSS Score
2.69%
Published
2009-02-11
Updated
2018-10-11
1 vulnerabilities found