ID CVE-2006-1514
Summary Multiple buffer overflows in the abcmidi-yaps translator in abcmidi 20050101, and other versions, allow remote attackers to execute arbitrary code via crafted ABC music files that trigger the overflows during translation into PostScript.
References
Vulnerable Configurations
  • cpe:2.3:a:abcmidi:abcmidi:2004-12-04:*:*:*:*:*:*:*
    cpe:2.3:a:abcmidi:abcmidi:2004-12-04:*:*:*:*:*:*:*
  • cpe:2.3:a:abcmidi:abcmidi:2005-01-01:*:*:*:*:*:*:*
    cpe:2.3:a:abcmidi:abcmidi:2005-01-01:*:*:*:*:*:*:*
  • cpe:2.3:a:abcmidi:abcmidi:*:*:*:*:*:*:*:*
    cpe:2.3:a:abcmidi:abcmidi:*:*:*:*:*:*:*:*
CVSS
Base: 7.5 (as of 08-03-2011 - 02:33)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:P/A:P
refmap via4
bid 17704
debian DSA-1043
osvdb 24974
secunia
  • 19826
  • 19829
vupen ADV-2006-1531
Last major update 08-03-2011 - 02:33
Published 27-04-2006 - 13:34
Last modified 08-03-2011 - 02:33
Back to Top