|
|
CVE Reference: CVE-2006-4131 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2006-4131 |
|
|
Description: Multiple buffer overflows in ArcSoft MMS Composer 1.5.5.6, and possibly earlier, and 2.0.0.13, and possibly earlier, allow remote attackers to cause a denial of service (crash) or execute arbitrary code via crafted MMS (Multimedia Messaging Service) messages that trigger the overflows in the (1) M-Notification.ind, (2) M-Retrieve.conf (Header and Body), or (3) SMIL parsers. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/28342 SREASON http://securityreason.com/securityalert/1387 SAID Secunia Advisory: SA21426 MISC http://www.mulliner.org/pocketpc/CollinMulliner_defcon14_pocketpcphones.pdf http://www.arcsoft.com/support/downloads/download_patches/mms.asp MILW0RM http://milw0rm.com/exploits/2156 FULLDISC http://lists.grok.org.uk/pipermail/full-disclosure/2006-August/048614.html BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/442841/100/0/threaded BID 19451 |
|
| Return to the previous page. |
