CVE-2006-0051

Name of the Vulnerable Software and Affected Versions: Kaffeine Player versions 0.4.2 through 0.7.1

Description: The issue allows user-assisted attackers to execute arbitrary code via long HTTP request headers when Kaffeine is fetching remote playlists. This triggers an overflow in the http peek function.

Recommendations: For versions 0.4.2 through 0.7.1, consider disabling the playlist import feature until a patch is available. Restrict access to remote playlists to minimize the risk of exploitation. Avoid using long HTTP request headers in the affected API endpoint until the issue is resolved.