4239 matches found
Winamp Ultravox streaming metadata artist tag buffer overflow
Added: 02/04/2008 CVE: CVE-2008-0065 BID: 27344 OSVDB: 41707 Background Winamp is a media player for Windows. Problem A buffer overflow vulnerability in the inmp3.dll library when parsing Ultravox streaming metadata allows command execution when a user opens a stream containing a long, specially...
Winamp Ultravox streaming metadata artist tag buffer overflow
Added: 02/04/2008 CVE: CVE-2008-0065 BID: 27344 OSVDB: 41707 Background Winamp is a media player for Windows. Problem A buffer overflow vulnerability in the inmp3.dll library when parsing Ultravox streaming metadata allows command execution when a user opens a stream containing a long, specially...
[SECURITY] Fedora 7 Update: xine-lib-1.1.10-1.fc7
This package contains the Xine library. Xine is a free multimedia player. It can play back various media. It also decodes multimedia files from local disk drives, and displays multimedia streamed over the Internet. It interprets many of the most common multimedia formats available - and some of t...
[SECURITY] Fedora 8 Update: xine-lib-1.1.10-1.fc8
This package contains the Xine library. Xine is a free multimedia player. It can play back various media. It also decodes multimedia files from local disk drives, and displays multimedia streamed over the Internet. It interprets many of the most common multimedia formats available - and some of t...
[Full-disclosure] Move Networks Upgrade Manager QMPUpgrade.dll Buffer Overflow
Who: Move Networks http://www.movenetworks.com/ What: Move Networks Quantum Streaming Player Upgrade Manager How: QMPUpgrade.dll version 1.0.0.1 6054D082-355D-4B47-B77C-36A778899F48 QMPUpgrade.dll is packaged with an older version of the Quantum player. The player itself has several...
Stack overflow
Multiple stack-based buffer overflows in inmp3.dll in Winamp 5.21, 5.5, and 5.51 allow remote attackers to execute arbitrary code via a long 1 artist or 2 name tag in Ultravox streaming metadata, related to construction of stream titles...
CVE-2008-0065
Multiple stack-based buffer overflows in inmp3.dll in Winamp 5.21, 5.5, and 5.51 allow remote attackers to execute arbitrary code via a long 1 artist or 2 name tag in Ultravox streaming metadata, related to construction of stream titles...
CVE-2008-0065
CVE-2008-0065 describes a stack-based buffer overflow in Winamp’s Ultravox streaming metadata handling (in_mp3.dll) that could allow remote code execution when processing a long or tag. Affected Winamp versions include 5.21, 5.5, and 5.51 (with advisories noting exploitation up to ~5.24 and fix...
Winamp < 5.52 Ultravox Streaming Metadata Parsing Buffer Overflows
Binary data 4347.prm...
Winamp < 5.52 Ultravox Streaming Metadata in_mp3.dll Multiple Tag Overflow
The remote host is using Winamp, a popular media player for Windows. The version of Winamp installed on the remote Windows host reportedly contains two stack-based buffer overflows in 'inmp3.dll' when parsing Ultravox streaming metadata that can be triggered by overly-long '' and '' tag values. I...
Debian Security Advisory DSA 877-1 (gnump3d)
The remote host is missing an update to gnump3d announced via advisory DSA 877-1. Steve Kemp discovered two vulnerabilities in gnump3d, a streaming server for MP3 and OGG files. The Common Vulnerabilities and Exposures Project identifies the following problems: CVE-2005-3122 The 404 error page do...
Debian: Security Advisory (DSA-901-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] Fedora 8 Update: xine-lib-1.1.9.1-1.fc8
This package contains the Xine library. Xine is a free multimedia player. It can play back various media. It also decodes multimedia files from local disk drives, and displays multimedia streamed over the Internet. It interprets many of the most common multimedia formats available - and some of t...
Apple QuickTime RTSP Response message Reason-Phrase buffer overflow vulnerability
Overview Apple QuickTime contains a buffer overflow vulnerability that may allow a remote, unauthenticated attacker to cause a denial-of-service condition and possibly execute arbitrary code. Description Real Time Streaming Protocol RTSP is a protocol that is used by streaming media systems. Appl...
move-overwrite.txt
Move Networks Quantum Streaming Player SEH Overwrite Exploit function Check var buf = 'A'; while buf.length = 1027 buf = buf + 'A'; // win32exec - EXITFUNC=seh CMD=c:\windows\system32\calc.exe Size=378 Encoder=Alpha2 http://metasploit.com var shellcode1 =...
Move Networks Quantum Streaming Player SEH Overwrite Exploit
No description provided by source. !-- Move Networks Quantum Streaming Player SEH Overwrite Exploit Vulnerability discovered by Parvez Anwar, CVE-2007-4722 Exploit written by e.b. Shellcode is limited to around 400 bytes Tested on Windows XP SP2fully patched English, IE6 Thanks to h.d.m. and the...
Move Networks Quantum Streaming Player - Remote Overflow (SEH)
Move Networks Quantum Streaming Player - Remote Overflow SEH Move Networks Quantum Streaming Player SEH Overwrite Exploit function Check var buf = 'A'; while buf.length = 1027 buf = buf + 'A'; // win32exec - EXITFUNC=seh CMD=c:\windows\system32\calc.exe Size=378 Encoder=Alpha2 http://metasploit.c...
Move Networks Quantum Streaming Player SEH Overwrite Exploit
Exploit for unknown platform in category remote exploits ============================================================ Move Networks Quantum Streaming Player SEH Overwrite Exploit ============================================================ Move Networks Quantum Streaming Player SEH Overwrite...
Move Networks Quantum Streaming Player - Remote Overflow (SEH)
Move Networks Quantum Streaming Player SEH Overwrite Exploit function Check var buf = 'A'; while buf.length = 1027 buf = buf + 'A'; // win32exec - EXITFUNC=seh CMD=c:\windows\system32\calc.exe Size=378 Encoder=Alpha2 http://metasploit.com var shellcode1 =...
Multiple vulnerabilities in libnemesi 0.6.4-rc1
Luigi Auriemma Application: libnemesi http://live.polito.it/documentation/libnemesi Versions: = 0.6.4-rc1 Platforms: nix Bugs: A buffer-overflow in handlertsppkt B buffer-overflow in the sendrequest functions C buffer-overflow in gettransportstr Exploitation: remote Date: 27 Dec 2007 Author: Luig...