| ID |
CVE-2006-4197
|
| Summary |
Multiple buffer overflows in libmusicbrainz (aka mb_client or MusicBrainz Client Library) 2.1.2 and earlier, and SVN 8406 and earlier, allow remote attackers to cause a denial of service (crash) or execute arbitrary code via (1) a long Location header by the HTTP server, which triggers an overflow in the MBHttp::Download function in lib/http.cpp; and (2) a long URL in RDF data, as demonstrated by a URL in an rdf:resource field in an RDF XML document, which triggers overflows in many functions in lib/rdfparse.c. |
| References |
|
| Vulnerable Configurations |
|
| CVSS |
| Base: | 7.5 (as of 17-10-2018 - 21:33) |
| Impact: | |
| Exploitability: | |
|
| CWE |
NVD-CWE-Other |
| CAPEC |
|
| Access |
| Vector | Complexity | Authentication |
| NETWORK |
LOW |
NONE |
|
| Impact |
| Confidentiality | Integrity | Availability |
| PARTIAL |
PARTIAL |
PARTIAL |
|
| cvss-vector
via4
|
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
| refmap
via4
|
| bid | 19508 | | bugtraq | - 20060813 Multiple buffer-overflows in libmusicbrainz 2.1.2
- 20060830 rPSA-2006-0161-1 libmusicbrainz
| | confirm | https://issues.rpath.com/browse/RPL-610 | | debian | DSA-1162 | | gentoo | GLSA-200610-09 | | mandriva | MDKSA-2006:157 | | misc | http://aluigi.altervista.org/adv/brainzbof-adv.txt | | sectrack | 1016691 | | secunia | - 21404
- 21668
- 21699
- 22191
- 22393
- 22517
- 22639
| | sreason | 1399 | | suse | SUSE-SR:2006:025 | | ubuntu | USN-363-1 | | xf | - libmusicbrainz-mbhttpdownload-bo(28367)
- libmusicbrainz-rdfparse-bo(28368)
|
|
| Last major update |
17-10-2018 - 21:33 |
| Published |
17-08-2006 - 21:04 |
| Last modified |
17-10-2018 - 21:33 |
