CVE-2006-3600
CVE-2006-3600
Multiple stack-based buffer overflows in the LookupTRM::lookup function in libtunepimp (TunePimp) 0.4.2 allow remote user-assisted attackers to cause a denial of service (application crash) and possibly execute code via a long (1) Album release date (MBE_ReleaseGetDate), (2) data, or (3) error strings.
Produtos afetados
n/a · n/aQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
http://bugs.musicbrainz.org/ticket/1764http://secunia.com/advisories/21026http://secunia.com/advisories/21027http://secunia.com/advisories/21106http://secunia.com/advisories/21277http://secunia.com/advisories/21323http://security.gentoo.org/glsa/glsa-200607-11.xmlhttp://securitytracker.com/id?1016539https://exchange.xforce.ibmcloud.com/vulnerabilities/27728http://www.debian.org/security/2006/dsa-1135http://www.mandriva.com/security/advisories?name=MDKSA-2006:126http://www.osvdb.org/27094