Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-5030

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2008-5030
Last Modified 30 Oct 2012 11:06:35
Published 10 Nov 2008 11:15:12
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-5030

Summary

Heap-based buffer overflow in the cddb_read_disc_data function in cddb.c in libcdaudio 0.99.12p2 allows remote CDDB servers to execute arbitrary code via long CDDB data.

Vulnerable Systems

Application

  • Libcaudio 0.99.12p2


References

XF - libcdaudio-cddb-bo(46392)

VUPEN - ADV-2008-3132

BID - 32122

MLIST - [oss-security] 20081111 Re: CVE request: libcdaudio

MLIST - [oss-security] 20081107 Re: CVE request: libcdaudio

MLIST - [oss-security] 20081105 CVE request: libcdaudio

DEBIAN - DSA-1665

MISC - http://sourceforge.net/tracker/index.php?func=detail&aid=1288043&group_id=27134&atid=389442

GENTOO - GLSA-200903-31

SECUNIA - 34353

SECUNIA - 32678

SUSE - SUSE-SR:2008:024

MANDRIVA - MDVSA-2008:233


Last Updated: 27 May 2016 10:49:46