Description
Stack-based buffer overflow in the String_parse::get_nonspace_quoted function in lib-src/allegro/strparse.cpp in Audacity 1.2.6 and other versions before 1.3.6 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a .gro file containing a long string.
Exploits (3)
exploitdb
WORKING POC
VERIFIED
by Encrypt3d.M!nd · pythonlocalwindows
https://www.exploit-db.com/exploits/10322
exploitdb
WORKING POC
VERIFIED
by mr_me · pythonlocalwindows
https://www.exploit-db.com/exploits/9501
exploitdb
WORKING POC
VERIFIED
by Houssamix · perldoswindows
https://www.exploit-db.com/exploits/7634
References (8)
Core 8
Core References
Third Party Advisory, VDB Entry exploit
x_refsource_exploit-db
https://www.exploit-db.com/exploits/7634
Broken Link vdb-entry
x_refsource_osvdb
http://osvdb.org/51070
Broken Link, Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/33090
Third Party Advisory vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00002.html
Third Party Advisory x_refsource_confirm
http://bugs.gentoo.org/show_bug.cgi?id=253493
Broken Link vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2009/0008
Broken Link third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/33356
Various Sources mailing-list
x_refsource_mlist
http://n2.nabble.com/Audacity-%22String_parse::get_nonspace_quoted%28%29%22-Buffer-Overflow-td2139537.html
Scores
EPSS
0.5806
EPSS Percentile
98.2%
Details
CWE
CWE-787
Status
published
Products (1)
audacityteam/audacity
< 1.3.6
Published
Feb 10, 2009
Tracked Since
Feb 18, 2026