CVE-2003-0075
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
19/02/2003
Last modified:
03/04/2025
Description
Integer signedness error in the myFseek function of samplein.c for Blade encoder (BladeEnc) 0.94.2 and earlier allows remote attackers to execute arbitrary code via a negative offset value following a "fmt" wave chunk.
Impact
Base Score 2.0
7.50
Severity 2.0
HIGH
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:bladeenc:bladeenc:0.92.7:*:*:*:*:*:*:* | ||
| cpe:2.3:a:bladeenc:bladeenc:0.93.10:*:*:*:*:*:*:* | ||
| cpe:2.3:a:bladeenc:bladeenc:0.94.0:*:*:*:*:*:*:* | ||
| cpe:2.3:a:bladeenc:bladeenc:0.94.1:*:*:*:*:*:*:* | ||
| cpe:2.3:a:bladeenc:bladeenc:0.94.2:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://marc.info/?l=bugtraq&m=104428700106672&w=2
- http://marc.info/?l=bugtraq&m=104446346127432&w=2
- http://www.iss.net/security_center/static/11227.php
- http://www.pivx.com/luigi/adv/blade942-adv.txt
- http://www.securityfocus.com/bid/6745
- http://marc.info/?l=bugtraq&m=104428700106672&w=2
- http://marc.info/?l=bugtraq&m=104446346127432&w=2
- http://www.iss.net/security_center/static/11227.php
- http://www.pivx.com/luigi/adv/blade942-adv.txt
- http://www.securityfocus.com/bid/6745