Multiple buffer overflows in the CDDBControl ActiveX control in Gracenote CDDB before 20070418 allow remote attackers to execute arbitrary code via long values for certain Proxy configuration parameters.
oryginał ENCVSS Vector
AV:N/AC:M/Au:N/C:C/I:C/A:CGracenote Cddbcontrol Activex Control
APPGracenotewszystkie wersje
🟢
PATCH DOSTĘPNY
Aktualizacja od producenta gotowa. Wdrożenie w ramach standardowego cyklu.
Tagi
RCEMemory
Referencje
Powiązane podatności
CVE-2006-3134HIGH9.3ten sam produkt
Buffer overflow in GraceNote CDDBControl ActiveX Control, as used by multiple products that use Gracenote CDDB...
CVE-2015-2004CRITICAL9.8ten sam vendor
The GraceNote GNSDK SDK before SVN Changeset 1.1.7 for Android might allow attackers to execute arbitrary code...
CVE-1999-1240HIGH7.5ten sam vendor
Buffer overflow in cddbd CD database server allows remote attackers to execute arbitrary commands via a long l...