Vulnerability Description
Buffer overflow in Acoustica MP3 CD Burner 4.32 allows user-assisted remote attackers to execute arbitrary code via a .asx playlist file with a REF element containing a long string in the HREF attribute. NOTE: it was later claimed that 4.51 Build 147 is also affected.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Acoustica | Acoustica Mp3 Cd Burner | 4.32 |
References
- http://osvdb.org/43455
- http://secunia.com/advisories/31666
- http://www.securityfocus.com/bid/24247Exploit
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34647
- https://www.exploit-db.com/exploits/4017
- https://www.exploit-db.com/exploits/6329
- http://osvdb.org/43455
- http://secunia.com/advisories/31666
- http://www.securityfocus.com/bid/24247Exploit
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34647
- https://www.exploit-db.com/exploits/4017
- https://www.exploit-db.com/exploits/6329
FAQ
What is CVE-2007-3006?
CVE-2007-3006 is a vulnerability with a CVSS score of 6.8 (MEDIUM). Buffer overflow in Acoustica MP3 CD Burner 4.32 allows user-assisted remote attackers to execute arbitrary code via a .asx playlist file with a REF element containing a long string in the HREF attribu...
How severe is CVE-2007-3006?
CVE-2007-3006 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-3006?
Check the references section above for vendor advisories and patch information. Affected products include: Acoustica Acoustica Mp3 Cd Burner.