CVE-2006-3581

Audacious Media Player Team Adplug < 2.0 - Memory Corruption

Title source: rule

Description

Multiple stack-based buffer overflows in Audacious AdPlug 2.0 and earlier allow remote user-assisted attackers to execute arbitrary code via large (1) DTM and (2) S3M files.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Luigi Auriemma · cremotelinux

https://www.exploit-db.com/exploits/28181

View Code ZIP pw:eip

References (15)

[Vendor Advisory] http://www.vupen.com/english/advisories/2006/2697

[Product] http://adplug.cvs.sourceforge.net/adplug/adplug/src/dtm.cpp?view=log#rev1.17

[Vendor Advisory] http://secunia.com/advisories/21238

[Vendor Advisory] http://secunia.com/advisories/21295

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/27674

[Exploit] http://www.securityfocus.com/bid/18859

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/27673

[Third Party Advisory, VDB Entry] http://www.osvdb.org/27046

[Third Party Advisory] http://security.gentoo.org/glsa/glsa-200609-06.xml

[Third Party Advisory] http://secunia.com/advisories/21869

[Third Party Advisory, VDB Entry] http://www.osvdb.org/27045

[Exploit, Vendor Advisory] http://aluigi.altervista.org/adv/adplugbof-adv.txt

[Third Party Advisory] http://security.gentoo.org/glsa/glsa-200607-13.xml

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/439432/100/100/threaded

[Patch, Vendor Advisory] http://secunia.com/advisories/20972

Scores

EPSS 0.2230

EPSS Percentile 95.8%

Details

CWE

CWE-119

Status published

Products (1)

audacious_media_player_team/adplug < 2.0

Published Jul 13, 2006

Tracked Since Feb 18, 2026