taglib Divide-By-Zero Denial of Service Vulnerability
BID:53535
Info
taglib Divide-By-Zero Denial of Service Vulnerability
| Bugtraq ID: | 53535 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: |
CVE-2012-2396 |
| Remote: | Yes |
| Local: | No |
| Published: | May 15 2012 12:00AM |
| Updated: | Nov 10 2014 12:58AM |
| Credit: | Reported by the vendor |
| Vulnerable: |
TagLib TagLib 1.7.1 TagLib TagLib 1.7 Gentoo Linux |
| Not Vulnerable: |
TagLib TagLib 1.7.2 |
Discussion
taglib Divide-By-Zero Denial of Service Vulnerability
taglib is prone to a denial-of-service vulnerability when handling malformed '.mp4' files.
Successfully exploiting this issue may cause crash in the application, resulting in denial-of-service conditions.
taglib versions prior to 1.7.2 are vulnerable.
taglib is prone to a denial-of-service vulnerability when handling malformed '.mp4' files.
Successfully exploiting this issue may cause crash in the application, resulting in denial-of-service conditions.
taglib versions prior to 1.7.2 are vulnerable.
Exploit / POC
taglib Divide-By-Zero Denial of Service Vulnerability
Currently we are not aware of any exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently we are not aware of any exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
taglib Divide-By-Zero Denial of Service Vulnerability
Solution:
Updates are available. Please see the references for more information.
Solution:
Updates are available. Please see the references for more information.
References
taglib Divide-By-Zero Denial of Service Vulnerability
References:
References:
- TagLib 1.7.2 released (TagLib)
- TagLib Homepage (TagLib)