PT-2014-1033 · Free(B)Soft Laboratory+2 · Speech Dispatcher+2

Publicado

2014-04-08

·

Atualizado

2024-06-15

·

CVE-2014-1724

CVSS v2.0

7.5

Alta

VetorAV:N/AC:L/Au:N/C:P/I:P/A:P
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 34.0.1847.116 Free(b)soft Laboratory Speech Dispatcher version 0.7.1
Description The issue is related to a use-after-free error in the Free(b)soft Laboratory Speech Dispatcher module. This error can be exploited by remote attackers, potentially causing a denial of service, such as an application hang, or possibly having other unspecified impacts on the system. The exploitation occurs via a text-to-speech request.
Recommendations For Google Chrome versions prior to 34.0.1847.116, update to version 34.0.1847.116 or later to resolve the issue. For Free(b)soft Laboratory Speech Dispatcher version 0.7.1, consider disabling the text-to-speech functionality until a patch is available.

Correção

DoS

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-399

Identificadores relacionados

ALT-PU-2014-1582
BDU:2014-00115
CVE-2014-1724
DSA-2905-1
MGASA-2014-0183
OPENSUSE-SU-2024:10171-1
OPENSUSE-SU-2024:12948-1

Produtos afetados

Alt Linux
Google Chrome
Speech Dispatcher