ID CVE-2006-0051
Summary Buffer overflow in playlistimport.cpp in Kaffeine Player 0.4.2 through 0.7.1 allows user-assisted attackers to execute arbitrary code via long HTTP request headers when Kaffeine is "fetching remote playlists", which triggers the overflow in the http_peek function.
References
Vulnerable Configurations
  • cpe:2.3:a:kaffeine:kaffeine_player:0.4.2
    cpe:2.3:a:kaffeine:kaffeine_player:0.4.2
  • cpe:2.3:a:kaffeine:kaffeine_player:0.4.3
    cpe:2.3:a:kaffeine:kaffeine_player:0.4.3
  • cpe:2.3:a:kaffeine:kaffeine_player:0.4.3b
    cpe:2.3:a:kaffeine:kaffeine_player:0.4.3b
  • cpe:2.3:a:kaffeine:kaffeine_player:0.5_rc1
    cpe:2.3:a:kaffeine:kaffeine_player:0.5_rc1
  • cpe:2.3:a:kaffeine:kaffeine_player:0.7.1
    cpe:2.3:a:kaffeine:kaffeine_player:0.7.1
CVSS
Base: 5.1 (as of 05-04-2006 - 09:06)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK HIGH NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
nessus via4
  • NASL family Ubuntu Local Security Checks
    NASL id UBUNTU_USN-268-1.NASL
    description Marcus Meissner discovered a buffer overflow in the http_peek() function. By tricking an user into opening a specially crafted playlist URL with Kaffeine, a remote attacker could exploit this to execute arbitrary code with the user's privileges. Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2018-08-15
    plugin id 21204
    published 2006-04-08
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=21204
    title Ubuntu 5.04 / 5.10 : kaffeine vulnerability (USN-268-1)
  • NASL family Gentoo Local Security Checks
    NASL id GENTOO_GLSA-200604-04.NASL
    description The remote host is affected by the vulnerability described in GLSA-200604-04 (Kaffeine: Buffer overflow) Kaffeine uses an unchecked buffer when fetching remote RAM playlists via HTTP. Impact : A remote attacker could entice a user to play a specially crafted RAM playlist resulting in the execution of arbitrary code with the permissions of the user running the application. Workaround : There is no known workaround at this time.
    last seen 2019-02-21
    modified 2018-11-19
    plugin id 21197
    published 2006-04-08
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=21197
    title GLSA-200604-04 : Kaffeine: Buffer overflow
  • NASL family Debian Local Security Checks
    NASL id DEBIAN_DSA-1023.NASL
    description Marcus Meissner discovered that kaffeine, a versatile media player for KDE 3, contains an unchecked buffer that can be overwritten remotely when fetching remote RAM playlists which can cause the execution of arbitrary code.
    last seen 2019-02-21
    modified 2018-07-20
    plugin id 22565
    published 2006-10-14
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=22565
    title Debian DSA-1023-1 : kaffeine - buffer overflow
  • NASL family Mandriva Local Security Checks
    NASL id MANDRAKE_MDKSA-2006-065.NASL
    description Marcus Meissner discovered Kaffeine contains an unchecked buffer while creating HTTP request headers for fetching remote RAM playlists, which allows overflowing a heap allocated buffer. As a result, remotely supplied RAM playlists can be used to execute arbitrary code on the client machine. Updated packages have been patched to correct this issue.
    last seen 2019-02-21
    modified 2018-07-19
    plugin id 21200
    published 2006-04-08
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=21200
    title Mandrake Linux Security Advisory : kaffeine (MDKSA-2006:065)
  • NASL family FreeBSD Local Security Checks
    NASL id FREEBSD_PKG_4BFCD857C62811DAB2FB000E0C2E438A.NASL
    description The KDE team reports : Kaffeine can produce a buffer overflow in http_peek() while creating HTTP request headers for fetching remote playlists, which under certain circumstances could be used to crash the application and/or execute arbitrary code.
    last seen 2019-02-21
    modified 2018-11-21
    plugin id 21426
    published 2006-05-13
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=21426
    title FreeBSD : kaffeine -- buffer overflow vulnerability (4bfcd857-c628-11da-b2fb-000e0c2e438a)
refmap via4
bid 17372
bugtraq 20060405 [Kaffeine Security Advisory] Heap based buffer overflow in http_peek()
confirm http://www.kde.org/info/security/advisory-20060404-1.txt
debian DSA-1023
gentoo GLSA-200604-04
mandriva MDKSA-2006:065
sectrack 1015863
secunia
  • 19525
  • 19540
  • 19542
  • 19549
  • 19557
  • 19571
suse SUSE-SR:2006:008
ubuntu USN-268-1
vupen ADV-2006-1229
xf kaffeine-http-peek-bo(25631)
Last major update 07-03-2011 - 21:29
Published 05-04-2006 - 06:04
Last modified 19-10-2018 - 11:42
Back to Top