Lucene search
K

60 matches found

Gentoo Linux
Gentoo Linux
added 2006/08/26 12:0 a.m.27 views

AlsaPlayer: Multiple buffer overflows

Background AlsaPlayer is a heavily multithreaded PCM player that tries to utilize ALSA utilities and drivers. As of June 2004, the project is inactive. Description AlsaPlayer contains three buffer overflows: in the function that handles the HTTP connections, the GTK interface, and the CDDB queryi...

5CVSS7AI score0.10448EPSS
Exploits1
NVD
NVD
added 2006/08/11 10:4 a.m.9 views

CVE-2006-4089

Multiple buffer overflows in Andy Lo-A-Foe AlsaPlayer 0.99.76 and earlier allow remote attackers to cause a denial of service application crash, or have other unknown impact, via 1 a long Location field sent by a web server, which triggers an overflow in the reconnect function in...

5CVSS7AI score0.10448EPSS
Exploits1References19
UbuntuCve
UbuntuCve
added 2006/08/11 10:4 a.m.21 views

CVE-2006-4089

Multiple buffer overflows in Andy Lo-A-Foe AlsaPlayer 0.99.76 and earlier allow remote attackers to cause a denial of service application crash, or have other unknown impact, via 1 a long Location field sent by a web server, which triggers an overflow in the reconnect function in...

5CVSS6.1AI score0.10448EPSS
Exploits1References1
OSV
OSV
added 2006/08/11 10:4 a.m.4 views

CVE-2006-4089

Multiple buffer overflows in Andy Lo-A-Foe AlsaPlayer 0.99.76 and earlier allow remote attackers to cause a denial of service application crash, or have other unknown impact, via 1 a long Location field sent by a web server, which triggers an overflow in the reconnect function in...

7AI score
Exploits0References19
Debian CVE
Debian CVE
added 2006/08/11 10:0 a.m.19 views

CVE-2006-4089

Multiple buffer overflows in Andy Lo-A-Foe AlsaPlayer 0.99.76 and earlier allow remote attackers to cause a denial of service application crash, or have other unknown impact, via 1 a long Location field sent by a web server, which triggers an overflow in the reconnect function in...

5CVSS6.7AI score0.10448EPSS
Exploits1
Cvelist
Cvelist
added 2006/08/11 10:0 a.m.19 views

CVE-2006-4089

Multiple buffer overflows in Andy Lo-A-Foe AlsaPlayer 0.99.76 and earlier allow remote attackers to cause a denial of service application crash, or have other unknown impact, via 1 a long Location field sent by a web server, which triggers an overflow in the reconnect function in...

6.8AI score0.10448EPSS
Exploits1References19
CVE
CVE
added 2006/08/11 10:0 a.m.76 views

CVE-2006-4089

CVE-2006-4089 affects AlsaPlayer up to version 0.99.76. The connected advisories detail three buffer overflows in ALSA-based AlsaPlayer: (1) a long Location header via HTTP triggering overflow in reader/http/http.c; (2) a long URL when seeking in the GTK playlist, triggering overflows in Playlist...

5CVSS6.8AI score0.10448EPSS
Exploits1References19Affected Software1
securityvulns
securityvulns
added 2006/08/10 12:0 a.m.32 views

Multiple AlsaPlayer security vulnerabilities

Multiple buffer overflows...

2.8AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2006/08/10 12:0 a.m.28 views

Multiple buffer-overflows in AlsaPlayer 0.99.76

Luigi Auriemma Application: AlsaPlayer http://www.alsaplayer.org Versions: = 0.99.76 and current CVS Platforms: nix and others Bugs: A buffer-overflow in reconnect's redirection B buffer-overflow in GTK playlist C buffer-overflow in cddblookup Exploitation: remote and local Date: 09 Aug 2006...

0.4AI score
Exploits0
Exploit DB
Exploit DB
added 2006/08/09 12:0 a.m.22 views

AlsaPlayer 0.99.x - Multiple Buffer Overflow Vulnerabilities

source: https://www.securityfocus.com/bid/19450/info AlsaPlayer is prone to multiple buffer-overflow vulnerabilities because the application fails to check the size of the data before copying it into a finite-sized internal memory buffer. An attacker can exploit these issues to execute arbitrary...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2006/08/09 12:0 a.m.9 views

AlsaPlayer 0.99.x - Multiple Buffer Overflow Vulnerabilities

AlsaPlayer 0.99.x - Multiple Buffer Overflow Vulnerabilities source: https://www.securityfocus.com/bid/19450/info AlsaPlayer is prone to multiple buffer-overflow vulnerabilities because the application fails to check the size of the data before copying it into a finite-sized internal memory buffe...

7.6AI score
Exploits0
FreeBSD
FreeBSD
added 2006/08/09 12:0 a.m.29 views

alsaplayer -- multiple vulnerabilities

Luigi Auriemma reports three vulnerabilities within alsaplayer: The function which handles the HTTP connections is vulnerable to a buffer-overflow that happens when it uses sscanf for copying the URL in the Location's field received from the server into the redirect buffer of only 1024 bytes...

5CVSS7.1AI score0.10448EPSS
Exploits1References1
Debian CVE
Debian CVE
added 2005/06/28 4:0 a.m.23 views

CVE-2002-1896

Buffer overflow in Alsaplayer 0.99.71, when installed setuid root, allows local users to execute arbitrary code via a long 1 -f or 2 -o command line argument...

7.2CVSS7.5AI score0.01602EPSS
Exploits1
CVE
CVE
added 2005/06/28 4:0 a.m.38 views

CVE-2002-1896

CVE-2002-1896 describes a buffer overflow in Alsaplayer 0.99.71 when installed with setuid root , allowing local users to execute arbitrary code via a long command line argument in either the -f or -o option. The connected documents confirm the affected component, root-cause class (buffer overflo...

7.2CVSS7.5AI score0.01602EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2005/06/28 4:0 a.m.16 views

CVE-2002-1896

Buffer overflow in Alsaplayer 0.99.71, when installed setuid root, allows local users to execute arbitrary code via a long 1 -f or 2 -o command line argument...

7.5AI score0.01602EPSS
Exploits1References5
OSV
OSV
added 2002/12/31 5:0 a.m.3 views

CVE-2002-1896

Buffer overflow in Alsaplayer 0.99.71, when installed setuid root, allows local users to execute arbitrary code via a long 1 -f or 2 -o command line argument...

7.8AI score0.01602EPSS
Exploits1References6
OSV
OSV
added 2002/12/31 5:0 a.m.3 views

DEBIAN-CVE-2002-1896

Buffer overflow in Alsaplayer 0.99.71, when installed setuid root, allows local users to execute arbitrary code via a long 1 -f or 2 -o command line argument...

7.2CVSS7.9AI score0.01602EPSS
Exploits1References1
NVD
NVD
added 2002/12/31 5:0 a.m.9 views

CVE-2002-1896

Buffer overflow in Alsaplayer 0.99.71, when installed setuid root, allows local users to execute arbitrary code via a long 1 -f or 2 -o command line argument...

7.2CVSS7.5AI score0.01602EPSS
Exploits1References5
exploitpack
exploitpack
added 2002/09/20 12:0 a.m.13 views

AlsaPlayer 0.99.71 - Local Buffer Overflow

AlsaPlayer 0.99.71 - Local Buffer Overflow // source: https://www.securityfocus.com/bid/5767/info Alsaplayer is a PCM player that utilizes the ALSA libraries and drivers. It is availabe for Linux and Unix platforms. A vulnerability has been discovered in Alsaplayer. By specifying an overly long...

0.1AI score
Exploits0
Exploit DB
Exploit DB
added 2002/09/20 12:0 a.m.28 views

AlsaPlayer 0.99.71 - Local Buffer Overflow

// source: https://www.securityfocus.com/bid/5767/info Alsaplayer is a PCM player that utilizes the ALSA libraries and drivers. It is availabe for Linux and Unix platforms. A vulnerability has been discovered in Alsaplayer. By specifying an overly long "add-on path", it is possible for an attacke...

7.4AI score
Exploits0
Rows per page
Query Builder