Vulnerability Description
Multiple buffer overflows in the abcmidi-yaps translator in abcmidi 20050101, and other versions, allow remote attackers to execute arbitrary code via crafted ABC music files that trigger the overflows during translation into PostScript.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Abcmidi | Abcmidi | <= 2006-04-22 |
References
- http://secunia.com/advisories/19826PatchVendor Advisory
- http://secunia.com/advisories/19829PatchVendor Advisory
- http://www.debian.org/security/2006/dsa-1043Patch
- http://www.osvdb.org/24974Patch
- http://www.securityfocus.com/bid/17704
- http://www.vupen.com/english/advisories/2006/1531
- http://secunia.com/advisories/19826PatchVendor Advisory
- http://secunia.com/advisories/19829PatchVendor Advisory
- http://www.debian.org/security/2006/dsa-1043Patch
- http://www.osvdb.org/24974Patch
- http://www.securityfocus.com/bid/17704
- http://www.vupen.com/english/advisories/2006/1531
FAQ
What is CVE-2006-1514?
CVE-2006-1514 is a vulnerability with a CVSS score of 7.5 (HIGH). Multiple buffer overflows in the abcmidi-yaps translator in abcmidi 20050101, and other versions, allow remote attackers to execute arbitrary code via crafted ABC music files that trigger the overflow...
How severe is CVE-2006-1514?
CVE-2006-1514 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-1514?
Check the references section above for vendor advisories and patch information. Affected products include: Abcmidi Abcmidi.