Vulnerability Assessment & Network Security Forums

If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.

Home >> Browse Vulnerability Assessment Database >> Red Hat Local Security Checks >> RHSA-2004-409: sox

Vulnerability Assessment Details

RHSA-2004-409: sox

Vulnerability Assessment Summary
Check for the version of the sox packages

Detailed Explanation for this Vulnerability Assessment

Updated sox packages that fix buffer overflows in the WAV file handling
code are now available.

SoX (Sound eXchange) is a sound file format converter. SoX can convert
between many different digitized sound formats and perform simple sound
manipulation functions, including sound effects.

Buffer overflows existed in the parsing of WAV file header fields. It was
possible that a malicious WAV file could have caused arbitrary code to be
executed when the file was played or converted. The Common Vulnerabilities
and Exposures project ( has assigned the name CVE-2004-0557
to these issues.

All users of sox should upgrade to these updated packages, which resolve
these issues as well as fix a number of minor bugs.

Solution :
Network Security Threat Level: High

Networks Security ID:

Vulnerability Assessment Copyright: This script is Copyright (C) 2004 Tenable Network Security

Cables, Connectors

KNOPPIX 8.1 LINUX LIVE DVD - 2018 pictureKnoppix Linux , 32 Bit
Knoppix Linux , 32 Bit pictureKNOPPIX 8.1 LINUX LIVE DVD - 2018
KNOPPIX 8.1 LINUX LIVE DVD - 2018 pictureKnoppix 8.2
Knoppix 8.2 picture


No Discussions have been posted on this vulnerability.