Vulnerability Details CVE-2006-1356
Stack-based buffer overflow in the count_vcards function in LibVC 3, as used in Rolo, allows user-assisted attackers to execute arbitrary code via a vCard file (e.g. contacts.vcf) containing a long line.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.057
EPSS Ranking 90.1%
CVSS Severity
CVSS v2 Score 5.1
References
- http://osvdb.org/ref/23/23985-libvc.txt
- http://secunia.com/advisories/19295
- http://www.osvdb.org/23985
- http://www.securityfocus.com/bid/17237
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25430
- http://osvdb.org/ref/23/23985-libvc.txt
- http://secunia.com/advisories/19295
- http://www.osvdb.org/23985
- http://www.securityfocus.com/bid/17237
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25430
Products affected by CVE-2006-1356
-
cpe:2.3:a:andrew_hsu:libvc:3
-
cpe:2.3:a:andrew_hsu:rolo:11