Vulnerability Details CVE-2006-3931
Buffer overflow in the daemon function in midirecord.cc in Tuomas Airaksinen Midirecord 2.0 allows local users to execute arbitrary code via a long command line argument (filename). NOTE: This may not be a vulnerability if Midirecord is not installed setuid.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 45.6%
CVSS Severity
CVSS v2 Score 4.6
References
- http://advisories.echo.or.id/adv/adv41-theday-2006.txt
- http://securityreason.com/securityalert/1303
- http://www.securityfocus.com/archive/1/441204/100/0/threaded
- http://www.securityfocus.com/bid/19190
- https://exchange.xforce.ibmcloud.com/vulnerabilities/28047
- http://advisories.echo.or.id/adv/adv41-theday-2006.txt
- http://securityreason.com/securityalert/1303
- http://www.securityfocus.com/archive/1/441204/100/0/threaded
- http://www.securityfocus.com/bid/19190
- https://exchange.xforce.ibmcloud.com/vulnerabilities/28047
Products affected by CVE-2006-3931
-
cpe:2.3:a:tuomas_airaksinen:midirecord:2.0