CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2006-7075

Buffer overflow in the meta_read_flac function in meta_decoder.c for Aqualung 0.9beta5 and earlier, and CVS 0.193.2 and earlier, allows user-assisted attackers to execute arbitrary code via a long Vorbis comment in a Free Lossless Audio Codec (FLAC) file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.016

EPSS Ranking 81.0%

CVSS Severity

CVSS v2 Score 6.8

References

http://aluigi.altervista.org/adv/aquabof-adv.txt
https://exchange.xforce.ibmcloud.com/vulnerabilities/28310
http://aluigi.altervista.org/adv/aquabof-adv.txt
https://exchange.xforce.ibmcloud.com/vulnerabilities/28310

Products affected by CVE-2006-7075

Aqualung » Aqualung » Version: 0.9_beta5

cpe:2.3:a:aqualung:aqualung:0.9_beta5

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-7075

Products

Pricing

Contact Us