Lucene search

[email protected]CVE-2006-6444

HistoryDec 10, 2006 - 9:28 p.m.

CVE-2006-6444

2006-12-1021:28:00

[email protected]

web.nvd.nist.gov

cve-2006-6444

stack-based buffer overflow

nostra divx player

remote code execution

m3u file

information security

8.2 High

AI Score

Confidence

High

6.8 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.04 Low

EPSS

Percentile

92.1%

JSON

Stack-based buffer overflow in Nostra DivX Player 2.1, 2.2.00.0, and possibly earlier, allows remote attackers to execute arbitrary code via a long string in an M3U file. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information.

Affected configurations

NVD

Node

divxdivx_playerMatch2.1

divxdivx_playerMatch2.2.00.0

CPENameOperatorVersion
divx:divx_playerdivx divx playereq2.1
divx:divx_playerdivx divx playereq2.2.00.0

CPE	Name	Operator	Version
divx:divx_player	divx divx player	eq	2.1
divx:divx_player	divx divx player	eq	2.2.00.0

References

secunia.com/advisories/23272

www.securityfocus.com/bid/21480

www.vupen.com/english/advisories/2006/4892

exchange.xforce.ibmcloud.com/vulnerabilities/30773

8.2 High

AI Score

Confidence

High

6.8 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.04 Low

EPSS

Percentile

92.1%

JSON

Related for CVE-2006-6444

nvd1 cvelist1