Lucene search
K

4239 matches found

Saint
Saint
added 2008/02/04 12:0 a.m.23 views

Winamp Ultravox streaming metadata artist tag buffer overflow

Added: 02/04/2008 CVE: CVE-2008-0065 BID: 27344 OSVDB: 41707 Background Winamp is a media player for Windows. Problem A buffer overflow vulnerability in the inmp3.dll library when parsing Ultravox streaming metadata allows command execution when a user opens a stream containing a long, specially...

10CVSS6.8AI score0.61275EPSS
Exploits8
Saint
Saint
added 2008/02/04 12:0 a.m.18 views

Winamp Ultravox streaming metadata artist tag buffer overflow

Added: 02/04/2008 CVE: CVE-2008-0065 BID: 27344 OSVDB: 41707 Background Winamp is a media player for Windows. Problem A buffer overflow vulnerability in the inmp3.dll library when parsing Ultravox streaming metadata allows command execution when a user opens a stream containing a long, specially...

10CVSS6.8AI score0.61275EPSS
Exploits8
Fedora
Fedora
added 2008/01/29 5:15 a.m.16 views

[SECURITY] Fedora 7 Update: xine-lib-1.1.10-1.fc7

This package contains the Xine library. Xine is a free multimedia player. It can play back various media. It also decodes multimedia files from local disk drives, and displays multimedia streamed over the Internet. It interprets many of the most common multimedia formats available - and some of t...

2.3AI score
Exploits0
Fedora
Fedora
added 2008/01/29 5:13 a.m.12 views

[SECURITY] Fedora 8 Update: xine-lib-1.1.10-1.fc8

This package contains the Xine library. Xine is a free multimedia player. It can play back various media. It also decodes multimedia files from local disk drives, and displays multimedia streamed over the Internet. It interprets many of the most common multimedia formats available - and some of t...

2.3AI score
Exploits0
securityvulns
securityvulns
added 2008/01/29 12:0 a.m.33 views

[Full-disclosure] Move Networks Upgrade Manager QMPUpgrade.dll Buffer Overflow

Who: Move Networks http://www.movenetworks.com/ What: Move Networks Quantum Streaming Player Upgrade Manager How: QMPUpgrade.dll version 1.0.0.1 6054D082-355D-4B47-B77C-36A778899F48 QMPUpgrade.dll is packaged with an older version of the Quantum player. The player itself has several...

1.3AI score
Exploits0
Prion
Prion
added 2008/01/22 8:0 p.m.12 views

Stack overflow

Multiple stack-based buffer overflows in inmp3.dll in Winamp 5.21, 5.5, and 5.51 allow remote attackers to execute arbitrary code via a long 1 artist or 2 name tag in Ultravox streaming metadata, related to construction of stream titles...

10CVSS8.2AI score0.61275EPSS
Exploits8References6Affected Software1
Cvelist
Cvelist
added 2008/01/22 7:0 p.m.36 views

CVE-2008-0065

Multiple stack-based buffer overflows in inmp3.dll in Winamp 5.21, 5.5, and 5.51 allow remote attackers to execute arbitrary code via a long 1 artist or 2 name tag in Ultravox streaming metadata, related to construction of stream titles...

7.6AI score0.61275EPSS
Exploits8References6
CVE
CVE
added 2008/01/22 7:0 p.m.59 views

CVE-2008-0065

CVE-2008-0065 describes a stack-based buffer overflow in Winamp’s Ultravox streaming metadata handling (in_mp3.dll) that could allow remote code execution when processing a long or tag. Affected Winamp versions include 5.21, 5.5, and 5.51 (with advisories noting exploitation up to ~5.24 and fix...

10CVSS7.5AI score0.61275EPSS
Exploits8References6Affected Software1
Tenable Nessus
Tenable Nessus
added 2008/01/18 12:0 a.m.18 views

Winamp < 5.52 Ultravox Streaming Metadata Parsing Buffer Overflows

Binary data 4347.prm...

10CVSS7.3AI score0.61275EPSS
Exploits8References4
Tenable Nessus
Tenable Nessus
added 2008/01/18 12:0 a.m.32 views

Winamp < 5.52 Ultravox Streaming Metadata in_mp3.dll Multiple Tag Overflow

The remote host is using Winamp, a popular media player for Windows. The version of Winamp installed on the remote Windows host reportedly contains two stack-based buffer overflows in 'inmp3.dll' when parsing Ultravox streaming metadata that can be triggered by overly-long '' and '' tag values. I...

10CVSS6.6AI score0.61275EPSS
Exploits8References4
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.23 views

Debian Security Advisory DSA 877-1 (gnump3d)

The remote host is missing an update to gnump3d announced via advisory DSA 877-1. Steve Kemp discovered two vulnerabilities in gnump3d, a streaming server for MP3 and OGG files. The Common Vulnerabilities and Exposures Project identifies the following problems: CVE-2005-3122 The 404 error page do...

5CVSS0.02982EPSS
Exploits1
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.16 views

Debian: Security Advisory (DSA-901-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.4CVSS6.8AI score0.02226EPSS
Exploits0References3
Fedora
Fedora
added 2008/01/15 11:11 p.m.28 views

[SECURITY] Fedora 8 Update: xine-lib-1.1.9.1-1.fc8

This package contains the Xine library. Xine is a free multimedia player. It can play back various media. It also decodes multimedia files from local disk drives, and displays multimedia streamed over the Internet. It interprets many of the most common multimedia formats available - and some of t...

6.4CVSS2.3AI score0.14969EPSS
Exploits1
CERT
CERT
added 2008/01/10 12:0 a.m.24 views

Apple QuickTime RTSP Response message Reason-Phrase buffer overflow vulnerability

Overview Apple QuickTime contains a buffer overflow vulnerability that may allow a remote, unauthenticated attacker to cause a denial-of-service condition and possibly execute arbitrary code. Description Real Time Streaming Protocol RTSP is a protocol that is used by streaming media systems. Appl...

9.3CVSS7.6AI score0.12405EPSS
Exploits1References9
Packet Storm
Packet Storm
added 2008/01/09 12:0 a.m.45 views

move-overwrite.txt

Move Networks Quantum Streaming Player SEH Overwrite Exploit function Check var buf = 'A'; while buf.length = 1027 buf = buf + 'A'; // win32exec - EXITFUNC=seh CMD=c:\windows\system32\calc.exe Size=378 Encoder=Alpha2 http://metasploit.com var shellcode1 =...

6.8CVSS6.5AI score0.10072EPSS
Exploits9
seebug.org
seebug.org
added 2008/01/09 12:0 a.m.28 views

Move Networks Quantum Streaming Player SEH Overwrite Exploit

No description provided by source. !-- Move Networks Quantum Streaming Player SEH Overwrite Exploit Vulnerability discovered by Parvez Anwar, CVE-2007-4722 Exploit written by e.b. Shellcode is limited to around 400 bytes Tested on Windows XP SP2fully patched English, IE6 Thanks to h.d.m. and the...

6.8CVSS0.8AI score0.10072EPSS
Exploits9
exploitpack
exploitpack
added 2008/01/08 12:0 a.m.22 views

Move Networks Quantum Streaming Player - Remote Overflow (SEH)

Move Networks Quantum Streaming Player - Remote Overflow SEH Move Networks Quantum Streaming Player SEH Overwrite Exploit function Check var buf = 'A'; while buf.length = 1027 buf = buf + 'A'; // win32exec - EXITFUNC=seh CMD=c:\windows\system32\calc.exe Size=378 Encoder=Alpha2 http://metasploit.c...

6.8CVSS0.4AI score0.10072EPSS
Exploits9
0day.today
0day.today
added 2008/01/08 12:0 a.m.29 views

Move Networks Quantum Streaming Player SEH Overwrite Exploit

Exploit for unknown platform in category remote exploits ============================================================ Move Networks Quantum Streaming Player SEH Overwrite Exploit ============================================================ Move Networks Quantum Streaming Player SEH Overwrite...

7.1AI score0.10072EPSS
Exploits9
Exploit DB
Exploit DB
added 2008/01/08 12:0 a.m.60 views

Move Networks Quantum Streaming Player - Remote Overflow (SEH)

Move Networks Quantum Streaming Player SEH Overwrite Exploit function Check var buf = 'A'; while buf.length = 1027 buf = buf + 'A'; // win32exec - EXITFUNC=seh CMD=c:\windows\system32\calc.exe Size=378 Encoder=Alpha2 http://metasploit.com var shellcode1 =...

6.8CVSS6.4AI score0.10072EPSS
Exploits9
securityvulns
securityvulns
added 2007/12/28 12:0 a.m.30 views

Multiple vulnerabilities in libnemesi 0.6.4-rc1

Luigi Auriemma Application: libnemesi http://live.polito.it/documentation/libnemesi Versions: = 0.6.4-rc1 Platforms: nix Bugs: A buffer-overflow in handlertsppkt B buffer-overflow in the sendrequest functions C buffer-overflow in gettransportstr Exploitation: remote Date: 27 Dec 2007 Author: Luig...

0.4AI score
Exploits0
Rows per page
Query Builder