### [CVE-2019-1010004](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1010004)
![](https://img.shields.io/static/v1?label=Product&message=SoX%20-%20Sound%20eXchange&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=Out-of-bounds%20Read&color=brighgreen)

### Description

SoX - Sound eXchange 14.4.2 and earlier is affected by: Out-of-bounds Read. The impact is: Denial of Service. The component is: read_samples function at xa.c:219. The attack vector is: Victim must open specially crafted .xa file. NOTE: this may overlap CVE-2017-18189.

### POC

#### Reference
- https://sourceforge.net/p/sox/bugs/299/
- https://sourceforge.net/p/sox/bugs/299/

#### Github
No PoCs found on GitHub currently.