CVE-2006-4789

Open Movie Editor <0.0.20060901 - Buffer Overflow

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-4789. PoCs published by Qnix.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in Open Movie Editor by crafting a malicious project file with embedded shellcode. It leverages environment variable manipulation to execute arbitrary code, leading to privilege escalation.

Description

Buffer overflow in Open Movie Editor 0.0.20060901 allows local users to cause a denial of service (system crash) or execute arbitrary code via a long project name in an open_movie_editor_project XML tag.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Qnix · clocallinux

https://www.exploit-db.com/exploits/2338

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in Open Movie Editor by crafting a malicious project file with embedded shellcode. It leverages environment variable manipulation to execute arbitrary code, leading to privilege escalation.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Open Movie Editor 0.0.20060901

No auth needed

Prerequisites: Environment variable manipulation (SHELLCODE in ENV) · Execution of the crafted project file

MITRE ATT&CK

T1059 - Command and Scripting Interpreter T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/28854

Exploit vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/19938

Exploit, Third Party Advisory exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/2338

Scores

EPSS 0.0095

EPSS Percentile 56.5%

Details

Status published

Products (1)

open_movie_editor/open_movie_editor 0.0.20060901

Published Sep 14, 2006

Tracked Since Feb 18, 2026