| Vulnerability Name: | CVE-2006-4089 (CCN-28308) | ||||||||||||
| Assigned: | 2006-08-09 | ||||||||||||
| Published: | 2006-08-09 | ||||||||||||
| Updated: | 2018-10-17 | ||||||||||||
| Summary: | Multiple buffer overflows in Andy Lo-A-Foe AlsaPlayer 0.99.76 and earlier allow remote attackers to cause a denial of service (application crash), or have other unknown impact, via (1) a long Location field sent by a web server, which triggers an overflow in the reconnect function in reader/http/http.c; (2) a long URL sent by a web server when AlsaPlayer is seeking a media file for the playlist, which triggers overflows in new_list_item and CbUpdated in interface/gtk/PlaylistWindow.cpp; and (3) a long response sent by a CDDB server, which triggers an overflow in cddb_lookup in input/ccda/cdda_engine.c. | ||||||||||||
| CVSS v3 Severity: | 5.6 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L)
| ||||||||||||
| CVSS v2 Severity: | 5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P) 4.2 Medium (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P/E:POC/RL:U/RC:UR)
4.4 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P/E:POC/RL:U/RC:UR)
| ||||||||||||
| Vulnerability Type: | CWE-Other | ||||||||||||
| Vulnerability Consequences: | Gain Access | ||||||||||||
| References: | Source: CCN Type: Luigi Auriemma Advisory 09 Aug 2006 Multiple buffer-overflows in AlsaPlayer 0.99.76 Source: MISC Type: UNKNOWN http://aluigi.altervista.org/adv/alsapbof-adv.txt Source: FULLDISC Type: UNKNOWN 20060809 Multiple buffer-overflows in AlsaPlayer 0.99.76 Source: MITRE Type: CNA CVE-2006-4089 Source: CCN Type: SA21422 AlsaPlayer Multiple Buffer Overflow Vulnerabilities Source: SECUNIA Type: UNKNOWN 21422 Source: CCN Type: SA21639 Gentoo alsaplayer Multiple Buffer Overflow Vulnerabilities Source: SECUNIA Type: UNKNOWN 21639 Source: SECUNIA Type: UNKNOWN 21749 Source: SECUNIA Type: UNKNOWN 22018 Source: GENTOO Type: UNKNOWN GLSA-200608-24 Source: SREASON Type: UNKNOWN 1356 Source: CCN Type: AlsaPlayer Web site AlsaPlayer Source: DEBIAN Type: UNKNOWN DSA-1179 Source: DEBIAN Type: DSA-1179 alsaplayer -- programming error Source: CCN Type: GLSA-200608-24 AlsaPlayer: Multiple buffer overflows Source: SUSE Type: UNKNOWN SUSE-SR:2006:021 Source: OSVDB Type: UNKNOWN 27883 Source: OSVDB Type: UNKNOWN 27884 Source: OSVDB Type: UNKNOWN 27885 Source: CCN Type: OSVDB ID: 27883 AlsaPlayer http.c reconnect() Function Location HTTP Header Overflow Source: CCN Type: OSVDB ID: 27884 AlsaPlayer PlaylistWindow.cpp GTK Playlist Multiple Function Overflow Source: CCN Type: OSVDB ID: 27885 AlsaPlayer cdda_engine.c cddb_lookup Function Overflow Source: BUGTRAQ Type: UNKNOWN 20060809 Multiple buffer-overflows in AlsaPlayer 0.99.76 Source: BID Type: Exploit 19450 Source: CCN Type: BID-19450 AlsaPlayer Multiple Buffer Overflow Vulnerabilities Source: VUPEN Type: UNKNOWN ADV-2006-3235 Source: XF Type: UNKNOWN alsaplayer-reconnect-bo(28306) Source: XF Type: UNKNOWN alsaplayer-gtkplaylist-bo(28307) Source: XF Type: UNKNOWN alsaplayer-cddblookup-bo(28308) Source: XF Type: UNKNOWN alsaplayer-cddblookup-bo(28308) Source: SUSE Type: SUSE-SR:2006:021 SUSE Security Summary Report | ||||||||||||
| Vulnerable Configuration: | Configuration 1: Denotes that component is vulnerable | ||||||||||||
| Oval Definitions | |||||||||||||
| |||||||||||||
| BACK | |||||||||||||