SUSE CVE-2006-4197

Multiple buffer overflows in libmusicbrainz aka mbclient or MusicBrainz Client Library 2.1.2 and earlier, and SVN 8406 and earlier, allow remote attackers to cause a denial of service crash or execute arbitrary code via 1 a long Location header by the HTTP server, which triggers an overflow in th...

Ubuntu: Security Advisory (USN-363-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Libmusicbrainz 2.0.2/2.1.x Multiple Buffer Overflow Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/19508/info The libmusicbrainz library is prone to multiple buffer-overflow vulnerabilities because the application fails to check the size of the data before copying it into a finite-sized internal memory buffer. An...

Gentoo Security Advisory GLSA 200610-09 (libmusicbrainz)

The remote host is missing updates announced in advisory GLSA 200610-09. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

Gentoo Security Advisory GLSA 200610-09 (libmusicbrainz)

The remote host is missing updates announced in advisory GLSA 200610-09. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

FreeBSD Ports: libmusicbrainz

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

FreeBSD Ports: libmusicbrainz

The remote host is missing an update to the system as announced in the referenced advisory. VID ed124f8c-82a2-11db-b46b-0012f06707f0 OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...

Debian: Security Advisory (DSA-1162)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian Security Advisory DSA 1162-1 (libmusicbrainz-2.0, libmusicbrainz-2.1)

The remote host is missing an update to libmusicbrainz-2.0, libmusicbrainz-2.1 announced via advisory DSA 1162-1. Luigi Auriemma discovered several buffer overflows in libmusicbrainz, a CD index library, that allow remote attackers to cause a denial of service or execute arbitrary code. OpenVAS...

SuSE 10 Security Update : libmusicbrainz (ZYPP Patch Number 2042)

This update fixes various buffer overflows that can by exploited by malicious servers to execute arbitrary code. CVE-2006-4197 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if...

Ubuntu 5.04 / 5.10 / 6.06 LTS : libmusicbrainz-2.0, libmusicbrainz-2.1 vulnerability (USN-363-1)

Luigi Auriemma discovered multiple buffer overflows in libmusicbrainz. When a user made queries to MusicBrainz servers, it was possible for malicious servers, or man-in-the-middle systems posing as servers, to send a crafted reply to the client request and remotely gain access to the user's syste...

openSUSE 10 Security Update : libmusicbrainz (libmusicbrainz-2044)

This update fixes various buffer overflows that can by exploited by malicious servers to execute arbitrary code. CVE-2006-4197 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...

FreeBSD : libmusicbrainz -- multiple buffer overflow vulnerabilities (ed124f8c-82a2-11db-b46b-0012f06707f0)

SecurityFocus reports about libmusicbrainz : The libmusicbrainz library is prone to multiple buffer-overflow vulnerabilities because the application fails to check the size of the data before copying it into a finite-sized internal memory buffer. An attacker can exploit these issues to execute...

GLSA-200610-09 : libmusicbrainz: Multiple buffer overflows

The remote host is affected by the vulnerability described in GLSA-200610-09 libmusicbrainz: Multiple buffer overflows Luigi Auriemma reported a possible buffer overflow in the MBHttp::Download function of lib/http.cpp as well as several possible buffer overflows in lib/rdfparse.c. Impact : A...

Debian DSA-1162-1 : libmusicbrainz-2.0 - buffer overflows

Luigi Auriemma discovered several buffer overflows in libmusicbrainz, a CD index library, that allow remote attackers to cause a denial of service or execute arbitrary code. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...

[SECURITY] [DSA 1162-1] New libmusicbrainz packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 1162-1 [email protected] http://www.debian.org/security/ Martin Schulze August 30th, 2006 http://www.debian.org/security/faq -...

DSA-1162 libmusicbrainz-2.0 - buffer overflows

Bulletin has no description...

CVE-2006-4197

Multiple buffer overflows in libmusicbrainz aka mbclient or MusicBrainz Client Library 2.1.2 and earlier, and SVN 8406 and earlier, allow remote attackers to cause a denial of service crash or execute arbitrary code via 1 a long Location header by the HTTP server, which triggers an overflow in th...

CVE-2006-4197

CVE-2006-4197 is confirmed in multiple security advisories for libmusicbrainz (2.1.2 and earlier). The issue consists of buffer overflows that can be triggered remotely: (1) via a long Location header in the HTTP server (MBHttp::Download in lib/http.cpp) and (2) via a long URL in RDF data (rdfpar...

CVE-2006-4197

Multiple buffer overflows in libmusicbrainz aka mbclient or MusicBrainz Client Library 2.1.2 and earlier, and SVN 8406 and earlier, allow remote attackers to cause a denial of service crash or execute arbitrary code via 1 a long Location header by the HTTP server, which triggers an overflow in th...