Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-3581

Overview

Vulnerability Score 5.1 5.1
CVE Id CVE-2006-3581
Last Modified 06 Sep 2011 12:00:00
Published 13 Jul 2006 03:05:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2006-3581

Summary

Multiple stack-based buffer overflows in Audacious AdPlug 2.0 and earlier allow remote user-assisted attackers to execute arbitrary code via large (1) DTM and (2) S3M files.

Vulnerable Systems

Application

  • Audacious Media Player Team Adplug 2.0


References

SECUNIA - 20972

XF - adplug-s3m-file-bo(27674)

XF - adplug-dtm-file-bo(27673)

VUPEN - ADV-2006-2697

BID - 18859

BUGTRAQ - 20060706 Various heap and stack overflow bugs in AdPlug library 2.0 (CVS 04 Jul 2006)

OSVDB - 27046

OSVDB - 27045

GENTOO - GLSA-200609-06

GENTOO - GLSA-200607-13

SECUNIA - 21869

SECUNIA - 21295

SECUNIA - 21238

MISC - http://aluigi.altervista.org/adv/adplugbof-adv.txt

CONFIRM - http://adplug.cvs.sourceforge.net/adplug/adplug/src/dtm.cpp?view=log#rev1.17


Last Updated: 27 May 2016 10:43:02