Unrated severityNVD Advisory· Published Sep 21, 2007· Updated Apr 23, 2026
CVE-2007-4066
CVE-2007-4066
Description
Multiple buffer overflows in Xiph.Org libvorbis before 1.2.0 allow context-dependent attackers to cause a denial of service or have other unspecified impact via a crafted OGG file, aka trac Changesets 13162, 13168, 13169, 13170, 13172, 13211, and 13215, as demonstrated by an overflow in oggenc.exe related to the _psy_noiseguards_8 array.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
25- secunia.com/advisories/26865nvdPatchVendor Advisory
- bugzilla.redhat.com/show_bug.cginvdPatch
- secunia.com/advisories/24923nvd
- secunia.com/advisories/27099nvd
- secunia.com/advisories/27170nvd
- secunia.com/advisories/27439nvd
- secunia.com/advisories/28614nvd
- security.gentoo.org/glsa/glsa-200710-03.xmlnvd
- securitytracker.com/idnvd
- svn.xiph.org/trunk/vorbis/CHANGESnvd
- www.debian.org/security/2008/dsa-1471nvd
- www.mandriva.com/security/advisoriesnvd
- www.novell.com/linux/security/advisories/2007_23_sr.htmlnvd
- www.redhat.com/support/errata/RHSA-2007-0845.htmlnvd
- www.redhat.com/support/errata/RHSA-2007-0912.htmlnvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11453nvd
- trac.xiph.org/changeset/13162nvd
- trac.xiph.org/changeset/13168nvd
- trac.xiph.org/changeset/13169nvd
- trac.xiph.org/changeset/13170nvd
- trac.xiph.org/changeset/13172nvd
- trac.xiph.org/changeset/13211nvd
- trac.xiph.org/changeset/13215nvd
- trac.xiph.org/ticket/300nvd
- trac.xiph.org/ticket/853nvd
News mentions
0No linked articles in our index yet.