Vulnerabilities > CVE-2006-6250 - Denial of Service vulnerability in Songbird Media Player

CVSS 7.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

COMPLETE

network

low complexity

songbird

exploit available

NVD

Published: 2006-12-04

Updated: 2017-10-19

Summary

Format string vulnerability in Songbird Media Player 0.2 and earlier allows remote attackers to cause a denial of service (crash) via an M3U Playlist file containing extended ASCII, which causes the Unicode converter to be invoked.

Vulnerable Configurations

Part	Description	Count
Application	Songbird Songbird Songbird Media Player *	1

Exploit-Db

description	Songbird Media Player <= 0.2 Format String Denial of Service PoC. CVE-2006-6250. Dos exploit for windows platform
file	exploits/windows/dos/2861.c
id	EDB-ID:2861
last seen	2016-01-31
modified	2006-11-28
platform	windows
port
published	2006-11-28
reporter	Greg Linares
source	https://www.exploit-db.com/download/2861/
title	Songbird Media Player <= 0.2 Format String Denial of Service PoC
type	dos

Summary

Vulnerable Configurations

Exploit-Db

References