FILE-OTHER -- Snort detected traffic targeting vulnerabilities in a file type that does not require enough rule coverage to have its own category.
FILE-OTHER Python lib wave.py wav zero channel denial of service attempt
This event is generated when an WAV file containing 0 channels is seen Impact: Could trigger a DoS condition if the application using a python library that handles WAV files does not handle exceptions Details: The Wave_read._read_fmt_chunk function in Lib/wave.py in Python through 3.6.4 does not ensure a nonzero channel value, which allows attackers to cause a denial of service (divide-by-zero and exception) via a crafted wav format audio file. Ease of Attack: Simple
No information provided
No public information
No known false positives
Cisco Talos Intelligence Group
No rule groups
CVE-2017-18207 |
Loading description
|