|
|
CVE Reference: CVE-2006-3668 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2006-3668 |
|
|
Description: Heap-based buffer overflow in the it_read_envelope function in Dynamic Universal Music Bibliotheque (DUMB) 0.9.3 and earlier and current CVS as of 20060716, including libdumb, allows user-assisted attackers to execute arbitrary code via a ".it" (Impulse Tracker) file with an envelope with a large number of nodes. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/27789 SREASON http://securityreason.com/securityalert/1240 SAID Secunia Advisory: SA21416 Secunia Advisory: SA21184 Secunia Advisory: SA21092 MISC http://aluigi.altervista.org/adv/dumbit-adv.txt GENTOO http://www.gentoo.org/security/en/glsa/glsa-200608-14.xml DEBIAN http://www.debian.org/security/2006/dsa-1123 BID 19025 |
|
| Return to the previous page. |
