CVE-2006-3581

Audacious AdPlug < 2.0 - Stack-Based Buffer Overflow via Large DTM or S3M Files

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-3581. PoCs published by Luigi Auriemma.

AI-analyzed exploit summary This PoC exploits multiple buffer overflow vulnerabilities in the AdPlug library (version <= 2.0) by crafting malicious files (CFF, MTK, DTM, S3M, etc.) with oversized data to trigger heap or stack overflows. It demonstrates the ability to overwrite memory buffers but lacks actual shellcode or payload execution.

Description

Multiple stack-based buffer overflows in Audacious AdPlug 2.0 and earlier allow remote user-assisted attackers to execute arbitrary code via large (1) DTM and (2) S3M files.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Luigi Auriemma · cremotelinux

https://www.exploit-db.com/exploits/28181

View Code ZIP pw:eip

This PoC exploits multiple buffer overflow vulnerabilities in the AdPlug library (version <= 2.0) by crafting malicious files (CFF, MTK, DTM, S3M, etc.) with oversized data to trigger heap or stack overflows. It demonstrates the ability to overwrite memory buffers but lacks actual shellcode or payload execution.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Moderate

Reliability

Theoretical

Target: AdPlug library <= 2.0

No auth needed

Prerequisites: Ability to deliver a malicious file to the target system · Target application must use the AdPlug library to process the file

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (15)

Core 15

Core References

Vendor Advisory vdb-entry x_refsource_vupen

http://www.vupen.com/english/advisories/2006/2697

Product x_refsource_confirm

http://adplug.cvs.sourceforge.net/adplug/adplug/src/dtm.cpp?view=log#rev1.17

Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/21238

Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/21295

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/27674

Exploit vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/18859

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/27673

Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb

http://www.osvdb.org/27046

Third Party Advisory vendor-advisory x_refsource_gentoo

http://security.gentoo.org/glsa/glsa-200609-06.xml

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/21869

Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb

http://www.osvdb.org/27045

Exploit, Vendor Advisory x_refsource_misc

http://aluigi.altervista.org/adv/adplugbof-adv.txt

Third Party Advisory vendor-advisory x_refsource_gentoo

http://security.gentoo.org/glsa/glsa-200607-13.xml

Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/439432/100/100/threaded

Patch, Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/20972

Scores

EPSS 0.1277

EPSS Percentile 95.8%

Details

CWE

CWE-119

Status published

Products (1)

audacious_media_player_team/adplug < 2.0

Published Jul 13, 2006

Tracked Since Feb 18, 2026