CVE-2006-6396

BlazeVideo HDTV Player <3.5 - Buffer Overflow

Title source: llm

Description

Stack-based buffer overflow in BlazeVideo HDTV Player 2.1, and possibly earlier, allows remote attackers to execute arbitrary code via a long filename in a PLF playlist, a different product than CVE-2006-6199. NOTE: it was later reported that 3.5 is also affected.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Greg Linares · clocalwindows

https://www.exploit-db.com/exploits/2880

View Code ZIP pw:eip

References (4)

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/2880

[Third Party Advisory] http://secunia.com/advisories/23192

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/30442

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/21399

Scores

EPSS 0.2282

EPSS Percentile 95.9%

Details

CWE

CWE-119

Status published

Products (2)

blazevideo/hdtv_player 3.5

blazevideo/hdtv_player < 2.1

Published Dec 08, 2006

Tracked Since Feb 18, 2026