CVE-2006-6261

Quinnware Quintessential Player < 4.50.1.82 - Buffer Overflow

Title source: rule

Description

Buffer overflow in Quintessential Player 4.50.1.82 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted (1) M3u or (2) M3u-8 file; or a (3) crafted PLS file with a long value in the (a) NumberofEntries, (b) Length (aka Length1), (c) Filename (aka File1), (d) Title (aka Title1) field, or other unspecified fields.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Greg Linares · cdoswindows

https://www.exploit-db.com/exploits/2860

View Code ZIP pw:eip

References (3)

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/2860

[Exploit] http://www.securityfocus.com/bid/21331

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/30559

Scores

EPSS 0.2302

EPSS Percentile 95.9%

Details

Status published

Products (1)

quinnware/quintessential_player < 4.50.1.82

Published Dec 04, 2006

Tracked Since Feb 18, 2026