{"edition": 1, "title": "MMS Ripper Unspecified Crafted File Issue", "bulletinFamily": "software", "published": "2005-07-09T17:57:24", "lastseen": "2017-04-28T13:20:14", "modified": "2005-07-09T17:57:24", "reporter": "OSVDB", "viewCount": 0, "href": "https://vulners.com/osvdb/OSVDB:17795", "description": "## Vulnerability Description\nA remote overflow exists in MMS Ripper. The issue is due to a boundary error in the \"mms_interp_header()\" function when processing stream IDs from Microsoft Media Services MMST streams. With a specially crafted request with more than 20 Stream IDs, an attacker can cause a buffer overflow resulting in a loss of integrity.\n## Solution Description\nUpgrade to version 0.6.4 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.\n## Short Description\nA remote overflow exists in MMS Ripper. The issue is due to a boundary error in the \"mms_interp_header()\" function when processing stream IDs from Microsoft Media Services MMST streams. With a specially crafted request with more than 20 Stream IDs, an attacker can cause a buffer overflow resulting in a loss of integrity.\n## References:\nVendor URL: http://nbenoit.tuxfamily.org/projects.php?rq=mmsrip\nVendor Specific News/Changelog Entry: http://nbenoit.tuxfamily.org/projects/mmsrip/ChangeLog\n[Secunia Advisory ID:15987](https://secuniaresearch.flexerasoftware.com/advisories/15987/)\n[CVE-2005-2213](https://vulners.com/cve/CVE-2005-2213)\n", "affectedSoftware": [{"name": "MMS Ripper", "version": "0.6.3", "operator": "eq"}], "type": "osvdb", "references": [], "enchantments": {"score": {"value": 6.8, "vector": "NONE", "modified": "2017-04-28T13:20:14", "rev": 2}, "dependencies": {"references": [{"type": "cve", "idList": ["CVE-2005-2213"]}], "modified": "2017-04-28T13:20:14", "rev": 2}, "vulnersScore": 6.8}, "cvss": {"vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/", "score": 7.5}, "cvelist": ["CVE-2005-2213"], "id": "OSVDB:17795"}

{"cve": [{"lastseen": "2021-02-02T05:24:37", "description": "Buffer overflow in the mms_interp_header function in mms.c in MMS Ripper before 0.6.4 might allow remote attackers to execute arbitrary code via a file with more than 20 streams.", "edition": 4, "cvss3": {}, "published": "2005-07-11T04:00:00", "title": "CVE-2005-2213", "type": "cve", "cwe": ["NVD-CWE-Other"], "bulletinFamily": "NVD", "cvss2": {"severity": "HIGH", "exploitabilityScore": 10.0, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "LOW", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 7.5, "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 6.4, "obtainUserPrivilege": true}, "cvelist": ["CVE-2005-2213"], "modified": "2008-09-10T19:41:00", "cpe": ["cpe:/a:mms_ripper:mms_ripper:0.6.0", "cpe:/a:mms_ripper:mms_ripper:0.4.2", "cpe:/a:mms_ripper:mms_ripper:0.4.1", "cpe:/a:mms_ripper:mms_ripper:0.4.0", "cpe:/a:mms_ripper:mms_ripper:0.6.2"], "id": "CVE-2005-2213", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2005-2213", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cpe23": ["cpe:2.3:a:mms_ripper:mms_ripper:0.4.2:*:*:*:*:*:*:*", "cpe:2.3:a:mms_ripper:mms_ripper:0.6.0:*:*:*:*:*:*:*", "cpe:2.3:a:mms_ripper:mms_ripper:0.4.0:*:*:*:*:*:*:*", "cpe:2.3:a:mms_ripper:mms_ripper:0.4.1:*:*:*:*:*:*:*", "cpe:2.3:a:mms_ripper:mms_ripper:0.6.2:*:*:*:*:*:*:*"]}]}