PT-2006-4457 · Audacious · Audacious Adplug
Luigi Auriemma
·
Published
2006-07-13
·
Updated
2018-10-18
·
CVE-2006-3582
CVSS v2.0
5.1
Medium
| Vector | AV:N/AC:H/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
Audacious AdPlug versions 2.0 and earlier
Description
The issue is related to multiple heap-based buffer overflows that can be triggered by remote user-assisted attackers. This can occur via the size specified in the package header of certain file types, including CFF, MTK, DMO, and U6M files, allowing attackers to execute arbitrary code.
Recommendations
For Audacious AdPlug versions 2.0 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Audacious Adplug