GraceNote CDDBControl ActiveX buffer overflow
Published:		20.04.2007
Source:		BUGTRAQ
SecurityVulns ID:		7623
Type:		client
Level:		5/10
Description:		Buffer overflow on oversized proxy configuration paramters.

CVE:

CVE-2007-0443 (Multiple buffer overflows in the CDDBControl ActiveX control in Gracenote CDDB before 20070418 allow remote attackers to execute arbitrary code via long values for certain Proxy configuration parameters.)

Original document

ZDI, ZDI-07-021: GraceNote CDDBControl ActiveX Buffer Overflow Vulnerability (20.04.2007)

Discuss:

Read or add your comments to this news (0 comments)