CVE-2006-4046
CVE-2006-4046
Multiple stack-based buffer overflows in Open Cubic Player 2.6.0pre6 and earlier for Windows, and 0.1.10_rc5 and earlier on Linux/BSD, allow remote attackers to execute arbitrary code via (1) a large .S3M file handled by the mpLoadS3M function, (2) a crafted .IT file handled by the itplayerclass::module::load function, (3) a crafted .ULT file handled by the mpLoadULT function, or (4) a crafted .AMS file handled by the mpLoadAMS function.
Affected products
n/a · n/apublic PoCs found — 1
cve_referencewww.exploit-db.com/exploits/2094unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://aluigi.altervista.org/adv/ocpbof-adv.txthttp://secunia.com/advisories/21267http://securityreason.com/securityalert/1349http://securitytracker.com/id?1016611https://exchange.xforce.ibmcloud.com/vulnerabilities/28103https://exchange.xforce.ibmcloud.com/vulnerabilities/28104https://exchange.xforce.ibmcloud.com/vulnerabilities/28105https://exchange.xforce.ibmcloud.com/vulnerabilities/28106https://www.exploit-db.com/exploits/2094http://www.securityfocus.com/archive/1/441730/100/100/threadedhttp://www.securityfocus.com/bid/19262http://www.vupen.com/english/advisories/2006/3078