First published: Mon May 16 2011(Updated: )
Multiple buffer overflows in Adobe Audition 3.0.1 and earlier allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via crafted data in unspecified fields in the TRKM chunk in an Audition Session (aka .ses) file, related to inconsistent use of character data types.
Credit: psirt@adobe.com
Affected Software | Affected Version | How to fix |
---|---|---|
Adobe Audition | =3.0 | |
Adobe Audition | <=3.0.1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2011-0615 is classified as a critical vulnerability due to its potential for remote code execution.
To fix CVE-2011-0615, update Adobe Audition to version 3.0.2 or later.
Exploitation of CVE-2011-0615 can lead to arbitrary code execution or cause the application to crash.
Adobe Audition versions 3.0 and earlier are affected by CVE-2011-0615.
You can identify if you are vulnerable to CVE-2011-0615 by checking if you are using Adobe Audition version 3.0 or earlier.