VYPR
Unrated severityNVD Advisory· Published Aug 6, 2004· Updated Jun 16, 2026

CVE-2004-0557

CVE-2004-0557

Description

Multiple buffer overflows in the st_wavstartread function in wav.c for Sound eXchange (SoX) 12.17.2 through 12.17.4 allow remote attackers to execute arbitrary code via certain WAV file header fields.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

14
  • Sox Oss/Sox4 versions
    cpe:2.3:a:sox:sox:12.17.2:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:sox:sox:12.17.2:*:*:*:*:*:*:*
    • cpe:2.3:a:sox:sox:12.17.3:*:*:*:*:*:*:*
    • cpe:2.3:a:sox:sox:12.17.4:*:*:*:*:*:*:*
    • (no CPE)range: 12.17.2 - 12.17.4
  • Conectiva/Linux3 versions
    cpe:2.3:o:conectiva:linux:10.0:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:o:conectiva:linux:10.0:*:*:*:*:*:*:*
    • cpe:2.3:o:conectiva:linux:8.0:*:*:*:*:*:*:*
    • cpe:2.3:o:conectiva:linux:9.0:*:*:*:*:*:*:*
  • cpe:2.3:o:gentoo:linux:1.4:*:*:*:*:*:*:*
  • cpe:2.3:o:redhat:enterprise_linux:3.0:*:advanced_servers:*:*:*:*:*+ 2 more
    • cpe:2.3:o:redhat:enterprise_linux:3.0:*:advanced_servers:*:*:*:*:*
    • cpe:2.3:o:redhat:enterprise_linux:3.0:*:enterprise_server:*:*:*:*:*
    • cpe:2.3:o:redhat:enterprise_linux:3.0:*:workstation:*:*:*:*:*
  • cpe:2.3:o:redhat:enterprise_linux_desktop:3.0:*:*:*:*:*:*:*
  • cpe:2.3:o:redhat:fedora_core:core_1.0:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:redhat:fedora_core:core_1.0:*:*:*:*:*:*:*
    • cpe:2.3:o:redhat:fedora_core:core_2.0:*:*:*:*:*:*:*

Patches

Vulnerability mechanics

References

14

News mentions

0

No linked articles in our index yet.