CVE-2006-3600
Published: 18 July 2006
Multiple stack-based buffer overflows in the LookupTRM::lookup function in libtunepimp (TunePimp) 0.4.2 allow remote user-assisted attackers to cause a denial of service (application crash) and possibly execute code via a long (1) Album release date (MBE_ReleaseGetDate), (2) data, or (3) error strings.
Priority
Status
Package | Release | Status |
---|---|---|
libtunepimp Launchpad, Ubuntu, Debian |
dapper |
Released
(0.3.0-9.1ubuntu3.1)
|
edgy |
Released
(0.4.2-3ubuntu3)
|
|
feisty |
Released
(0.4.2-3ubuntu3)
|
|
upstream |
Needs triage
|
|
gutsy |
Released
(0.4.2-3ubuntu3)
|