{
  "modified": "2025-08-09T19:01:28Z",
  "published": "2014-02-17T16:55:07Z",
  "id": "CVE-2012-0270",
  "details": "Multiple stack-based buffer overflows in Csound before 5.16.6 allow remote attackers to execute arbitrary code via a crafted (1) hetro file to the getnum function in util/heti_main.c or (2) PVOC file to the getnum function in util/pv_import.c.",
  "references": [
    {
      "type": "ADVISORY",
      "url": "http://secunia.com/advisories/47585"
    },
    {
      "type": "ADVISORY",
      "url": "http://secunia.com/secunia_research/2012-3/"
    },
    {
      "type": "ADVISORY",
      "url": "http://sourceforge.net/projects/csound/files/csound5/csound5.16/Version5.16_Notes/view"
    },
    {
      "type": "WEB",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2012-02/msg00027.html"
    },
    {
      "type": "WEB",
      "url": "http://lists.opensuse.org/opensuse-updates/2012-03/msg00027.html"
    }
  ]
}
