Lucene search
K

134 matches found

Prion
Prion
added 2007/06/07 9:30 p.m.11 views

Stack overflow

Multiple stack-based buffer overflows in stream/streamcddb.c in MPlayer before 1.0rc1try3 allow remote attackers to execute arbitrary code via a CDDB entry with a long 1 album title or 2 category...

9.3CVSS7.8AI score0.05748EPSS
Exploits0References17Affected Software1
Cvelist
Cvelist
added 2007/06/07 9:0 p.m.25 views

CVE-2007-2948

Multiple stack-based buffer overflows in stream/streamcddb.c in MPlayer before 1.0rc1try3 allow remote attackers to execute arbitrary code via a CDDB entry with a long 1 album title or 2 category...

7.4AI score0.05748EPSS
Exploits0References17
EUVD
EUVD
added 2007/06/07 9:0 p.m.4 views

EUVD-2007-2940

Multiple stack-based buffer overflows in stream/streamcddb.c in MPlayer before 1.0rc1try3 allow remote attackers to execute arbitrary code via a CDDB entry with a long 1 album title or 2 category...

9.3CVSS7.4AI score0.05748EPSS
Exploits0References19
Debian CVE
Debian CVE
added 2007/06/07 9:0 p.m.28 views

CVE-2007-2948

Multiple stack-based buffer overflows in stream/streamcddb.c in MPlayer before 1.0rc1try3 allow remote attackers to execute arbitrary code via a CDDB entry with a long 1 album title or 2 category...

9.3CVSS7.4AI score0.05748EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2007/06/07 12:0 a.m.22 views

FreeBSD : mplayer -- cddb stack overflow (3ac80dd2-14df-11dc-bcfc-0016179b2dd5)

Mplayer Team reports : A stack overflow was found in the code used to handle cddb queries. When copying the album title and category, no checking was performed on the size of the strings before storing them in a fixed-size array. A malicious entry in the database could trigger a stack overflow in...

9.3CVSS6.1AI score0.05748EPSS
Exploits0References2
FreeBSD
FreeBSD
added 2007/06/06 12:0 a.m.24 views

mplayer -- cddb stack overflow

Mplayer Team reports: A stack overflow was found in the code used to handle cddb queries. When copying the album title and category, no checking was performed on the size of the strings before storing them in a fixed-size array. A malicious entry in the database could trigger a stack overflow in...

9.3CVSS7.4AI score0.05748EPSS
Exploits0
NVD
NVD
added 2007/04/24 4:19 p.m.19 views

CVE-2007-0443

Multiple buffer overflows in the CDDBControl ActiveX control in Gracenote CDDB before 20070418 allow remote attackers to execute arbitrary code via long values for certain Proxy configuration parameters...

9.3CVSS7.8AI score0.07103EPSS
Exploits0References9
Cvelist
Cvelist
added 2007/04/24 4:0 p.m.16 views

CVE-2007-0443

Multiple buffer overflows in the CDDBControl ActiveX control in Gracenote CDDB before 20070418 allow remote attackers to execute arbitrary code via long values for certain Proxy configuration parameters...

7.7AI score0.07103EPSS
Exploits0References9
CVE
CVE
added 2007/04/24 4:0 p.m.37 views

CVE-2007-0443

The CVE-2007-0443 issue affects GraceNote’s CDDBControl ActiveX Control. The vulnerability is a buffer overflow in the ActiveX proxy-configuration parameters when long strings are supplied, which can allow remote code execution on affected Windows hosts. Exploitation requires the user to visit a ...

9.3CVSS7.7AI score0.07103EPSS
Exploits0References9Affected Software1
Check Point Advisories
Check Point Advisories
added 2007/01/14 12:0 a.m.21 views

GraceNote CDDBControl ActiveX Control Buffer Overflow (CVE-2006-3134; CVE-2006-6442)

A vulnerability has been discovered in America Online AOL CDDB ActiveX Control. Gracenote CDDB ActiveX control contains a buffer overflow error that allows remote attackers to execute arbitrary code via a long option string. A remote attacker could exploit this flaw to execute arbitrary code and...

9.3CVSS7.7AI score0.1096EPSS
Exploits0
Check Point Advisories
Check Point Advisories
added 2006/09/12 12:0 a.m.21 views

Update Protection against GraceNote (CDDB) Control ActiveX Vulnerability

The Gracenote CDDB ActiveX control is used by Sony products as well as other vendors for looking up information about CDs in the Gracenote CD Data Base CDDB. Gracenote CDDB ActiveX control contains a buffer overflow error. By convincing a user to visit a malicious Web page or open a malicious HTM...

9.3CVSS2.4AI score0.1096EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2006/08/30 12:0 a.m.29 views

GLSA-200608-24 : AlsaPlayer: Multiple buffer overflows

The remote host is affected by the vulnerability described in GLSA-200608-24 AlsaPlayer: Multiple buffer overflows AlsaPlayer contains three buffer overflows: in the function that handles the HTTP connections, the GTK interface, and the CDDB querying mechanism. Impact : An attacker could exploit...

5CVSS6.2AI score0.11082EPSS
Exploits1References2
NVD
NVD
added 2006/08/11 10:4 a.m.9 views

CVE-2006-4089

Multiple buffer overflows in Andy Lo-A-Foe AlsaPlayer 0.99.76 and earlier allow remote attackers to cause a denial of service application crash, or have other unknown impact, via 1 a long Location field sent by a web server, which triggers an overflow in the reconnect function in...

5CVSS7AI score0.11082EPSS
Exploits1References19
UbuntuCve
UbuntuCve
added 2006/08/11 10:4 a.m.22 views

CVE-2006-4089

Multiple buffer overflows in Andy Lo-A-Foe AlsaPlayer 0.99.76 and earlier allow remote attackers to cause a denial of service application crash, or have other unknown impact, via 1 a long Location field sent by a web server, which triggers an overflow in the reconnect function in...

5CVSS6.1AI score0.11082EPSS
Exploits1References1
OSV
OSV
added 2006/08/11 10:4 a.m.1 views

DEBIAN-CVE-2006-4089

Multiple buffer overflows in Andy Lo-A-Foe AlsaPlayer 0.99.76 and earlier allow remote attackers to cause a denial of service application crash, or have other unknown impact, via 1 a long Location field sent by a web server, which triggers an overflow in the reconnect function in...

5CVSS7AI score0.11082EPSS
Exploits1References1
Cvelist
Cvelist
added 2006/08/11 10:0 a.m.19 views

CVE-2006-4089

Multiple buffer overflows in Andy Lo-A-Foe AlsaPlayer 0.99.76 and earlier allow remote attackers to cause a denial of service application crash, or have other unknown impact, via 1 a long Location field sent by a web server, which triggers an overflow in the reconnect function in...

6.8AI score0.11082EPSS
Exploits1References19
Debian CVE
Debian CVE
added 2006/08/11 10:0 a.m.36 views

CVE-2006-4089

Multiple buffer overflows in Andy Lo-A-Foe AlsaPlayer 0.99.76 and earlier allow remote attackers to cause a denial of service application crash, or have other unknown impact, via 1 a long Location field sent by a web server, which triggers an overflow in the reconnect function in...

5CVSS6.7AI score0.11082EPSS
Exploits1
securityvulns
securityvulns
added 2006/08/10 12:0 a.m.29 views

Multiple buffer-overflows in AlsaPlayer 0.99.76

Luigi Auriemma Application: AlsaPlayer http://www.alsaplayer.org Versions: = 0.99.76 and current CVS Platforms: nix and others Bugs: A buffer-overflow in reconnect's redirection B buffer-overflow in GTK playlist C buffer-overflow in cddblookup Exploitation: remote and local Date: 09 Aug 2006...

0.4AI score
Exploits0
FreeBSD
FreeBSD
added 2006/08/09 12:0 a.m.29 views

alsaplayer -- multiple vulnerabilities

Luigi Auriemma reports three vulnerabilities within alsaplayer: The function which handles the HTTP connections is vulnerable to a buffer-overflow that happens when it uses sscanf for copying the URL in the Location's field received from the server into the redirect buffer of only 1024 bytes...

5CVSS7.1AI score0.11082EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
added 2006/06/27 12:0 a.m.31 views

GraceNote CDDBControl ActiveX Buffer Overflow Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on systems that have some versions of the GraceNote CDDBControl ActiveX object installed. There is a buffer overflow in an ActiveXObject registered by several products that use the Gracenote CDDB for CD information lookup. The...

9.3CVSS7.6AI score0.1096EPSS
Exploits0
Rows per page
Query Builder