Csound util/lpci_main.c main() Function Multiple Buffer Overflows
High Nessus Plugin ID 58990
SynopsisThe remote host has an application installed that is affected by multiple buffer overflow vulnerabilities.
DescriptionThe version of Csound installed on the remote Windows host is less than 5.17.2. As such, it is reportedly affected by a stack- and a heap-based buffer overflow present in the util/lpci_main.c main() function.
By tricking a user into opening a specially crafted file, an attacker may be able to execute arbitrary code subject to the user's privileges.
SolutionUpgrade to Csound version 5.17.2 or later.