PT-2010-1469 · Ease · Ease Audio Cutter

Zax

Published

2010-03-03

Updated

2017-09-19

CVE-2009-4659

CVSS v2.0

4.3

Medium

Vector

AV:N/AC:M/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions Ease Audio Cutter version 1.20

Description The issue allows remote attackers to cause a denial of service, resulting in an application crash, by providing a long string in a WAV file.

Recommendations For Ease Audio Cutter version 1.20, consider avoiding the use of WAV files with long strings until a fix is available. As a temporary workaround, restrict the handling of WAV files to minimize the risk of application crash.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2009-4659

Affected Products

Ease Audio Cutter

PT-2010-1469 · Ease · Ease Audio Cutter

CVE-2009-4659

Related Identifiers

Affected Products

References · 4