CVE-2006-0051

Buffer overflow in playlistimport.cpp in Kaffeine Player 0.4.2 through 0.7.1 allows user-assisted attackers to execute arbitrary code via long HTTP request headers when Kaffeine is "fetching remote playlists", which triggers the overflow in the http_peek function.

CVSS v2.0 5.1 MEDIUM

5.1^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:H/Au:N/C:P/I:P/A:P

Exploitability : 4.9 / Impact : 6.4

Access Vector NETWORK

Access Complexity HIGH

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://secunia.com/advisories/19525	Patch Vendor Advisory
http://secunia.com/advisories/19540
http://secunia.com/advisories/19542
http://secunia.com/advisories/19549
http://secunia.com/advisories/19557
http://secunia.com/advisories/19571
http://securitytracker.com/id?1015863
http://www.debian.org/security/2006/dsa-1023
http://www.gentoo.org/security/en/glsa/glsa-200604-04.xml
http://www.kde.org/info/security/advisory-20060404-1.txt	Patch Vendor Advisory
http://www.mandriva.com/security/advisories?name=MDKSA-2006:065
http://www.novell.com/linux/security/advisories/2006_08_sr.html
http://www.securityfocus.com/archive/1/430319/100/0/threaded
http://www.securityfocus.com/bid/17372
http://www.vupen.com/english/advisories/2006/1229
https://exchange.xforce.ibmcloud.com/vulnerabilities/25631
https://usn.ubuntu.com/268-1/

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:kaffeine:kaffeine_player:0.4.2:::::::*
	cpe:2.3:a:kaffeine:kaffeine_player:0.4.3:::::::*
	cpe:2.3:a:kaffeine:kaffeine_player:0.4.3b:::::::*
	cpe:2.3:a:kaffeine:kaffeine_player:0.5_rc1:::::::*
	cpe:2.3:a:kaffeine:kaffeine_player:0.7.1:::::::*

History

No history.

Information

Published : 2006-04-05 10:04

Updated : 2018-10-19 15:42

NVD link : CVE-2006-0051

Mitre link : CVE-2006-0051

CVE.ORG link : CVE-2006-0051

JSON object : View

Products Affected

kaffeine

kaffeine_player

CWE

NVD-CWE-Other

{"id": "CVE-2006-0051", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.1, "accessVector": "NETWORK", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "HIGH", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 4.9, "obtainUserPrivilege": true, "obtainOtherPrivilege": false, "userInteractionRequired": true}]}, "published": "2006-04-05T10:04:00.000", "references": [{"url": "http://secunia.com/advisories/19525", "tags": ["Patch", "Vendor Advisory"], "source": "security@debian.org"}, {"url": "http://secunia.com/advisories/19540", "source": "security@debian.org"}, {"url": "http://secunia.com/advisories/19542", "source": "security@debian.org"}, {"url": "http://secunia.com/advisories/19549", "source": "security@debian.org"}, {"url": "http://secunia.com/advisories/19557", "source": "security@debian.org"}, {"url": "http://secunia.com/advisories/19571", "source": "security@debian.org"}, {"url": "http://securitytracker.com/id?1015863", "source": "security@debian.org"}, {"url": "http://www.debian.org/security/2006/dsa-1023", "source": "security@debian.org"}, {"url": "http://www.gentoo.org/security/en/glsa/glsa-200604-04.xml", "source": "security@debian.org"}, {"url": "http://www.kde.org/info/security/advisory-20060404-1.txt", "tags": ["Patch", "Vendor Advisory"], "source": "security@debian.org"}, {"url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:065", "source": "security@debian.org"}, {"url": "http://www.novell.com/linux/security/advisories/2006_08_sr.html", "source": "security@debian.org"}, {"url": "http://www.securityfocus.com/archive/1/430319/100/0/threaded", "source": "security@debian.org"}, {"url": "http://www.securityfocus.com/bid/17372", "source": "security@debian.org"}, {"url": "http://www.vupen.com/english/advisories/2006/1229", "source": "security@debian.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25631", "source": "security@debian.org"}, {"url": "https://usn.ubuntu.com/268-1/", "source": "security@debian.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "Buffer overflow in playlistimport.cpp in Kaffeine Player 0.4.2 through 0.7.1 allows user-assisted attackers to execute arbitrary code via long HTTP request headers when Kaffeine is \"fetching remote playlists\", which triggers the overflow in the http_peek function."}, {"lang": "es", "value": "Desbordamiento de b\u00fafer en playlistimport.cpp en Kaffein Player 0.4.2 a 0.7.1 permite a atacantes con implicaci\u00f3n del usuario ejecutar c\u00f3digo de su elecci\u00f3n mediante peticiones HTTP largas cuando Kaffeine est\u00e1 \"obteniendo listas de reproducci\u00f3n remotas\", lo que que dispara un desbordamiento de b\u00fafer en la funci\u00f3n http_peek.\r\n"}], "lastModified": "2018-10-19T15:42:17.463", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:kaffeine:kaffeine_player:0.4.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "789E99F5-9047-4B97-9F5D-0A83A5B2C264"}, {"criteria": "cpe:2.3:a:kaffeine:kaffeine_player:0.4.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C6AEDC59-1392-45A6-A498-07061345ED1D"}, {"criteria": "cpe:2.3:a:kaffeine:kaffeine_player:0.4.3b:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "650E1BFF-C301-43FA-B6A0-FF14CFBC6E07"}, {"criteria": "cpe:2.3:a:kaffeine:kaffeine_player:0.5_rc1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E4D173DD-913A-4A32-B687-B4E2F7BBEB32"}, {"criteria": "cpe:2.3:a:kaffeine:kaffeine_player:0.7.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "79CBD359-6818-444C-A0DD-212B21832640"}], "operator": "OR"}]}], "sourceIdentifier": "security@debian.org"}