CVE-2006-3668
Dynamic Universal Music Bibliotheque Dumb < 0.9.3 - Memory Corruption
Title source: ruleDescription
Heap-based buffer overflow in the it_read_envelope function in Dynamic Universal Music Bibliotheque (DUMB) 0.9.3 and earlier and current CVS as of 20060716, including libdumb, allows user-assisted attackers to execute arbitrary code via a ".it" (Impulse Tracker) file with an envelope with a large number of nodes.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Luigi Auriemma · cdoswindows
https://www.exploit-db.com/exploits/2037
References (10)
Scores
EPSS
0.1790
EPSS Percentile
95.2%
Details
CWE
CWE-119
Status
published
Products (1)
dynamic_universal_music_bibliotheque/dumb
< 0.9.3
Published
Jul 18, 2006
Tracked Since
Feb 18, 2026