Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-6609

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2007-6609
Last Modified 07 Mar 2011 10:03:17
Published 31 Dec 2007 03:46:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-6609

Summary

Multiple stack-based buffer overflows in the CPLI_ReadTag_OGG function in CPI_PlaylistItem.c in CoolPlayer 217 and earlier allow user-assisted remote attackers to execute arbitrary code via a long (1) cTag or (2) cValue field in an OGG Vorbis file.

Vulnerable Systems

Application

  • Coolplayer 217


References

VUPEN - ADV-2008-0008

BID - 27061

BUGTRAQ - 20071228 Buffer-overflow in CoolPlayer 217

OSVDB - 42671

XF - coolplayer-cplireadtagogg-bo(39325)

SREASON - 3503

SECUNIA - 28226

MISC - http://aluigi.altervista.org/adv/culplayer-adv.txt


Last Updated: 27 May 2016 10:46:32