CVE-2008-5030 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2008-5030
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2008-5030

Description: Heap-based buffer overflow in the cddb_read_disc_data function in cddb.c in libcdaudio 0.99.12p2 allows remote CDDB servers to execute arbitrary code via long CDDB data.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/46392 SUSE http://lists.opensuse.org/opensuse-security-announce/2008-11/msg00000.html SAID Secunia Advisory: SA34353 Secunia Advisory: SA32678 MLIST http://www.openwall.com/lists/oss-security/2008/11/11/6 http://www.openwall.com/lists/oss-security/2008/11/07/1 http://www.openwall.com/lists/oss-security/2008/11/11/4 http://www.openwall.com/lists/oss-security/2008/11/05/1 MISC http://sourceforge.net/tracker/index.php?func=detail&aid=1288043&group_id=27134&atid=389442 GENTOO http://security.gentoo.org/glsa/glsa-200903-31.xml DEBIAN http://www.debian.org/security/2008/dsa-1665 BID 32122

Return to the previous page.