Back to search
CVE-2006-2458
Published: May 18, 2006
Modified: Aug 7, 2024
PUBLISHED
Description
Multiple heap-based buffer overflows in Libextractor 0.5.13 and earlier allow remote attackers to execute arbitrary code via (1) the asf_read_header function in the ASF plugin (plugins/asfextractor.c), and (2) the parse_trak_atom function in the QT plugin (plugins/qtextractor.c).
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20060517 Two heap overflow in libextractor 0.5.13 (rev 2832)
mailing-list
x_refsource_BUGTRAQ
1016118
vdb-entry
x_refsource_SECTRACK
18021
vdb-entry
x_refsource_BID
SUSE-SR:2006:012
vendor-advisory
x_refsource_SUSE
916
third-party-advisory
x_refsource_SREASON
20160
third-party-advisory
x_refsource_SECUNIA
20326
third-party-advisory
x_refsource_SECUNIA
20150
third-party-advisory
x_refsource_SECUNIA
DSA-1081
vendor-advisory
x_refsource_DEBIAN
http://gnunet.org/libextractor/
x_refsource_CONFIRM
libextractor-asfextractor-bo(26531)
vdb-entry
x_refsource_XF
GLSA-200605-14
vendor-advisory
x_refsource_GENTOO
libextractor-qtextractor-bo(26532)
vdb-entry
x_refsource_XF
20457
third-party-advisory
x_refsource_SECUNIA
ADV-2006-1848
vdb-entry
x_refsource_VUPEN
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now