staufnic

4 exploits Active since Oct 2020
CVE-2019-18794 WRITEUP MEDIUM WRITEUP
BASS Audio Library 2.4.14 - Use After Free
The BASS Audio Library 2.4.14 under Windows is prone to a BASS_StreamCreateFile Use after Free vulnerability via a crafted .ogg file. An attacker can exploit this to gain access to sensitive information that may aid in further attacks. A failure in exploitation leads to denial of service.
CVSS 6.5
CVE-2019-18795 WRITEUP MEDIUM WRITEUP
BASS Audio Library 2.4.14 - Info Disclosure
The BASS Audio Library 2.4.14 under Windows is prone to a BASS_StreamCreateFile out of bounds read vulnerability via a crafted .wav file. An attacker can exploit this issues to gain access to sensitive information that may aid in further attacks. A failure in exploitation leads to denial of service.
CVSS 6.5
CVE-2019-18796 WRITEUP MEDIUM WRITEUP
BASS Audio Library <2.4.14 - DoS
The BASS Audio Library 2.4.14 under Windows is prone to a BASS_StreamCreateFile Denial of Service vulnerability (infinite loop) via a crafted .mp3 file. This weakness could allow attackers to consume excessive CPU and the application becomes unresponsive.
CVSS 6.5
CVE-2019-19513 WRITEUP CRITICAL WORKING POC
BASSMIDI plugin 2.4.12.1 - Code Injection
The BASSMIDI plugin 2.4.12.1 for Un4seen BASS Audio Library on Windows is prone to an out of bounds write vulnerability. An attacker may exploit this to execute code on the target machine. A failure in exploitation leads to a denial of service.
CVSS 9.8