Vulnerabilities > CVE-2006-7075 - Unspecified vulnerability in Aqualung 0.9Beta5

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

aqualung

NVD

Published: 2007-03-02

Updated: 2024-11-21

Summary

Buffer overflow in the meta_read_flac function in meta_decoder.c for Aqualung 0.9beta5 and earlier, and CVS 0.193.2 and earlier, allows user-assisted attackers to execute arbitrary code via a long Vorbis comment in a Free Lossless Audio Codec (FLAC) file.

Vulnerable Configurations

Part	Description	Count
Application	Aqualung Aqualung Aqualung 0.9_Beta5	1

References

http://aluigi.altervista.org/adv/aquabof-adv.txt
https://exchange.xforce.ibmcloud.com/vulnerabilities/28310
http://aluigi.altervista.org/adv/aquabof-adv.txt
https://exchange.xforce.ibmcloud.com/vulnerabilities/28310