VYPR
Unrated severityNVD Advisory· Published Oct 12, 2007· Updated Jun 16, 2026

CVE-2007-4619

CVE-2007-4619

Description

Multiple integer overflows in Free Lossless Audio Codec (FLAC) libFLAC before 1.2.1, as used in Winamp before 5.5 and other products, allow user-assisted remote attackers to execute arbitrary code via a malformed FLAC file that triggers improper memory allocation, resulting in a heap-based buffer overflow.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4
  • Flac/Libflac2 versions
    cpe:2.3:a:flac:libflac:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:flac:libflac:*:*:*:*:*:*:*:*range: <=1.2
    • (no CPE)range: <1.2.1
  • cpe:2.3:a:nullsoft:winamp:*:*:*:*:*:*:*:*
    Range: <=5.35
  • Winamp/Winampllm-fuzzy
    Range: <5.5

Patches

Vulnerability mechanics

References

31

News mentions

0

No linked articles in our index yet.