ABCMIDI ABC Music Files Remote Buffer Overflow Vulnerability
BID:17704
Info
ABCMIDI ABC Music Files Remote Buffer Overflow Vulnerability
| Bugtraq ID: | 17704 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2006-1514 |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 26 2006 12:00AM |
| Updated: | Dec 05 2006 08:14PM |
| Credit: | Erik Sjlund is credited with the discovery of this vulnerability. |
| Vulnerable: |
Debian Linux 3.1 sparc Debian Linux 3.1 s/390 Debian Linux 3.1 ppc Debian Linux 3.1 mipsel Debian Linux 3.1 mips Debian Linux 3.1 m68k Debian Linux 3.1 ia-64 Debian Linux 3.1 ia-32 Debian Linux 3.1 hppa Debian Linux 3.1 arm Debian Linux 3.1 amd64 Debian Linux 3.1 alpha Debian Linux 3.1 Debian Linux 3.0 sparc Debian Linux 3.0 s/390 Debian Linux 3.0 ppc Debian Linux 3.0 mipsel Debian Linux 3.0 mips Debian Linux 3.0 m68k Debian Linux 3.0 ia-64 Debian Linux 3.0 ia-32 Debian Linux 3.0 hppa Debian Linux 3.0 arm Debian Linux 3.0 alpha Debian Linux 3.0 abcMIDI abcMIDI 2005-01-01 abcMIDI abcMIDI 2004-12-04 abcMIDI abcMIDI 17 |
| Not Vulnerable: | |
Discussion
ABCMIDI ABC Music Files Remote Buffer Overflow Vulnerability
abcMIDI is prone to a remote buffer-overflow vulnerability.
A remote attacker can exploit this issue to execute arbitrary code in the context of a user running the application. As a result, the attacker can gain unauthorized access to the vulnerable computer.
abcMIDI is prone to a remote buffer-overflow vulnerability.
A remote attacker can exploit this issue to execute arbitrary code in the context of a user running the application. As a result, the attacker can gain unauthorized access to the vulnerable computer.
Exploit / POC
ABCMIDI ABC Music Files Remote Buffer Overflow Vulnerability
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]
Solution / Fix
ABCMIDI ABC Music Files Remote Buffer Overflow Vulnerability
Solution:
Please see the referenced advisories for information on obtaining and applying the appropriate updates.
Currently we are not aware of any official vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]
abcMIDI abcMIDI 17
abcMIDI abcMIDI 2005-01-01
Solution:
Please see the referenced advisories for information on obtaining and applying the appropriate updates.
Currently we are not aware of any official vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]
abcMIDI abcMIDI 17
-
Debian abcmidi-yaps_17-1woody1_alpha.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/a/abcmidi/abcmidi-yaps_17 -1woody1_alpha.deb -
Debian abcmidi-yaps_17-1woody1_arm.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/a/abcmidi/abcmidi-yaps_17 -1woody1_arm.deb -
Debian abcmidi-yaps_17-1woody1_hppa.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/a/abcmidi/abcmidi-yaps_17 -1woody1_hppa.deb -
Debian abcmidi-yaps_17-1woody1_i386.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/a/abcmidi/abcmidi-yaps_17 -1woody1_i386.deb -
Debian abcmidi-yaps_17-1woody1_ia64.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/a/abcmidi/abcmidi-yaps_17 -1woody1_ia64.deb -
Debian abcmidi-yaps_17-1woody1_m68k.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/a/abcmidi/abcmidi-yaps_17 -1woody1_m68k.deb -
Debian abcmidi-yaps_17-1woody1_mips.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/a/abcmidi/abcmidi-yaps_17 -1woody1_mips.deb -
Debian abcmidi-yaps_17-1woody1_mipsel.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/a/abcmidi/abcmidi-yaps_17 -1woody1_mipsel.deb -
Debian abcmidi-yaps_17-1woody1_powerpc.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/a/abcmidi/abcmidi-yaps_17 -1woody1_powerpc.deb -
Debian abcmidi-yaps_17-1woody1_s390.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/a/abcmidi/abcmidi-yaps_17 -1woody1_s390.deb -
Debian abcmidi-yaps_17-1woody1_sparc.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/a/abcmidi/abcmidi-yaps_17 -1woody1_sparc.deb -
Debian abcmidi_17-1woody1_alpha.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/a/abcmidi/abcmidi_17-1woo dy1_alpha.deb -
Debian abcmidi_17-1woody1_arm.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/a/abcmidi/abcmidi_17-1woo dy1_arm.deb -
Debian abcmidi_17-1woody1_hppa.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/a/abcmidi/abcmidi_17-1woo dy1_hppa.deb -
Debian abcmidi_17-1woody1_i386.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/a/abcmidi/abcmidi_17-1woo dy1_i386.deb -
Debian abcmidi_17-1woody1_ia64.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/a/abcmidi/abcmidi_17-1woo dy1_ia64.deb -
Debian abcmidi_17-1woody1_m68k.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/a/abcmidi/abcmidi_17-1woo dy1_m68k.deb -
Debian abcmidi_17-1woody1_mips.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/a/abcmidi/abcmidi_17-1woo dy1_mips.deb -
Debian abcmidi_17-1woody1_mipsel.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/a/abcmidi/abcmidi_17-1woo dy1_mipsel.deb -
Debian abcmidi_17-1woody1_powerpc.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/a/abcmidi/abcmidi_17-1woo dy1_powerpc.deb -
Debian abcmidi_17-1woody1_s390.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/a/abcmidi/abcmidi_17-1woo dy1_s390.deb -
Debian abcmidi_17-1woody1_sparc.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/a/abcmidi/abcmidi_17-1woo dy1_sparc.deb
abcMIDI abcMIDI 2005-01-01
-
Debian abcmidi-yaps_20050101-1sarge1_alpha.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/a/abcmidi/abcmidi-yaps_20 050101-1sarge1_alpha.deb -
Debian abcmidi-yaps_20050101-1sarge1_amd64.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/a/abcmidi/abcmidi-yaps_20 050101-1sarge1_amd64.deb -
Debian abcmidi-yaps_20050101-1sarge1_arm.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/a/abcmidi/abcmidi-yaps_20 050101-1sarge1_arm.deb -
Debian abcmidi-yaps_20050101-1sarge1_hppa.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/a/abcmidi/abcmidi-yaps_20 050101-1sarge1_hppa.deb -
Debian abcmidi-yaps_20050101-1sarge1_i386.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/a/abcmidi/abcmidi-yaps_20 050101-1sarge1_i386.deb -
Debian abcmidi-yaps_20050101-1sarge1_ia64.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/a/abcmidi/abcmidi-yaps_20 050101-1sarge1_ia64.deb -
Debian abcmidi-yaps_20050101-1sarge1_m68k.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/a/abcmidi/abcmidi-yaps_20 050101-1sarge1_m68k.deb -
Debian abcmidi-yaps_20050101-1sarge1_mips.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/a/abcmidi/abcmidi-yaps_20 050101-1sarge1_mips.deb -
Debian abcmidi-yaps_20050101-1sarge1_mipsel.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/a/abcmidi/abcmidi-yaps_20 050101-1sarge1_mipsel.deb -
Debian abcmidi-yaps_20050101-1sarge1_powerpc.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/a/abcmidi/abcmidi-yaps_20 050101-1sarge1_powerpc.deb -
Debian abcmidi-yaps_20050101-1sarge1_s390.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/a/abcmidi/abcmidi-yaps_20 050101-1sarge1_s390.deb -
Debian abcmidi-yaps_20050101-1sarge1_sparc.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/a/abcmidi/abcmidi-yaps_20 050101-1sarge1_sparc.deb -
Debian abcmidi_20050101-1sarge1_alpha.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/a/abcmidi/abcmidi_2005010 1-1sarge1_alpha.deb -
Debian abcmidi_20050101-1sarge1_amd64.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/a/abcmidi/abcmidi_2005010 1-1sarge1_amd64.deb -
Debian abcmidi_20050101-1sarge1_arm.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/a/abcmidi/abcmidi_2005010 1-1sarge1_arm.deb -
Debian abcmidi_20050101-1sarge1_hppa.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/a/abcmidi/abcmidi_2005010 1-1sarge1_hppa.deb -
Debian abcmidi_20050101-1sarge1_i386.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/a/abcmidi/abcmidi_2005010 1-1sarge1_i386.deb -
Debian abcmidi_20050101-1sarge1_ia64.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/a/abcmidi/abcmidi_2005010 1-1sarge1_ia64.deb -
Debian abcmidi_20050101-1sarge1_m68k.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/a/abcmidi/abcmidi_2005010 1-1sarge1_m68k.deb -
Debian abcmidi_20050101-1sarge1_mips.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/a/abcmidi/abcmidi_2005010 1-1sarge1_mips.deb -
Debian abcmidi_20050101-1sarge1_mipsel.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/a/abcmidi/abcmidi_2005010 1-1sarge1_mipsel.deb -
Debian abcmidi_20050101-1sarge1_powerpc.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/a/abcmidi/abcmidi_2005010 1-1sarge1_powerpc.deb -
Debian abcmidi_20050101-1sarge1_s390.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/a/abcmidi/abcmidi_2005010 1-1sarge1_s390.deb -
Debian abcmidi_20050101-1sarge1_sparc.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/a/abcmidi/abcmidi_2005010 1-1sarge1_sparc.deb
References
ABCMIDI ABC Music Files Remote Buffer Overflow Vulnerability
References:
References:
- abcMIDI Home Page (abcMIDI)