CVE-2006-2465
CVE-2006-2465
Buffer overflow in MP3Info 0.8.4 allows attackers to execute arbitrary code via a long command line argument. NOTE: if mp3info is not installed setuid or setgid in any reasonable context, then this issue might not be a vulnerability.
Affected products
n/a · n/apublic PoCs found — 5
cve_referencepacketstormsecurity.com/files/124955/Mp3info-Stack-Buffer-Overflow.htmlunverifiedcve_referencepacketstormsecurity.com/files/125786/MP3Info-0.8.5-SEH-Buffer-Overflow.htmlunverifiedcve_referencewww.exploit-db.com/exploits/32358unverifiedexploitdbwww.exploit-db.com/exploits/31220unverifiedexploitdbwww.exploit-db.com/exploits/32358unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://osvdb.org/show/osvdb/30945http://packetstormsecurity.com/files/124955/Mp3info-Stack-Buffer-Overflow.htmlhttp://packetstormsecurity.com/files/125786/MP3Info-0.8.5-SEH-Buffer-Overflow.htmlhttp://securitytracker.com/id?1016108http://www.exploit-db.com/exploits/32358http://www.securiteam.com/exploits/5GP0E15IKO.htmlhttp://www.securityfocus.com/bid/18016