CVE-2006-6547 - Buffer overflow in the readAA function in read_aa.cpp in Winamp iPod Plugin (ml_ipod) 2.00 p19 and e

CVE-2006-6547

Summary

Buffer overflow in the readAA function in read_aa.cpp in Winamp iPod Plugin (ml_ipod) 2.00 p19 and earlier allows remote attackers to cause a denial of service (application crash) or execute arbitrary code via a long tag in an audible.com audiobook (aa) file.

References

Vulnerable Configurations

cpe:2.3:a:mlipod:winamp_ipod_plugin:2.00:*:*:*:*:*:*:*
cpe:2.3:a:mlipod:winamp_ipod_plugin:2.00:*:*:*:*:*:*:*
cpe:2.3:a:mlipod:winamp_ipod_plugin:2.00_p19:*:*:*:*:*:*:*
cpe:2.3:a:mlipod:winamp_ipod_plugin:2.00_p19:*:*:*:*:*:*:*

CVSS

Base:	4.3 (as of 29-07-2017 - 01:29)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	MEDIUM	NONE

Impact

Confidentiality	Integrity	Availability
NONE	PARTIAL	NONE

cvss-vector via4

AV:N/AC:M/Au:N/C:N/I:P/A:N

refmap via4

bid	21569
confirm	http://mlipod.cvs.sourceforge.net/mlipod/ml_ipod/read_aa.cpp http://mlipod.cvs.sourceforge.net/mlipod/ml_ipod/read_aa.cpp?r1=1.3.6.1&r2=1.3.6.2
misc	http://aluigi.altervista.org/adv/mlipodbof-adv.txt
osvdb	32266
secunia	23354
vupen	ADV-2006-4986
xf	winamp-readaa-bo(30866)

Last major update

29-07-2017 - 01:29

Published

14-12-2006 - 18:28

Last modified

29-07-2017 - 01:29