CVE-2006-3668: CVE-2006-3668

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2006-3668

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Heap-based buffer overflow in the it_read_envelope function in Dynamic Universal Music Bibliotheque (DUMB) 0.9.3 and earlier and current CVS as of 20060716, including libdumb, allows user-assisted attackers to execute arbitrary code via a ".it" (Impulse Tracker) file with an envelope with a large number of nodes.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Libmikmod XCOM处理器远程堆溢出漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

libmikmod是Mikmod所使用的函数库，主要用于播放各种类型的音频模块。 libmikmod在处理XCOM对象时存在堆溢出漏洞，远程攻击者可能利用此漏洞在客户机器上执行任意指令。在处理XCOM块时libmikmod读取了用于指定标注大小的32位数字，然后分配等于该大小加1的内存，以容纳标注末尾可能的空字节。因此如果攻击者使用了0xffffffff值(0xffffffff + 1 = 0)的话，函数库就可能分配0字节的内存。然后在试图读取大小值所指定的内存数量时，就会导致堆溢出。 loaders/

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2006-3668

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2006-3668

Please Login to view more intelligence information

http://aluigi.altervista.org/adv/dumbit-adv.txtx_refsource_MISC
http://securityreason.com/securityalert/1240third-party-advisoryx_refsource_SREASON
http://secunia.com/advisories/21184third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/21092third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/21416third-party-advisoryx_refsource_SECUNIA
http://www.securityfocus.com/bid/19025vdb-entryx_refsource_BID
http://www.debian.org/security/2006/dsa-1123vendor-advisoryx_refsource_DEBIAN
http://www.vupen.com/english/advisories/2006/2835vdb-entryx_refsource_VUPEN
http://www.gentoo.org/security/en/glsa/glsa-200608-14.xmlvendor-advisoryx_refsource_GENTOO
https://exchange.xforce.ibmcloud.com/vulnerabilities/27789vdb-entryx_refsource_XF
https://nvd.nist.gov/vuln/detail/CVE-2006-3668

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2006-3668

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

I. Basic Information for CVE-2006-3668

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2006-3668

III. Intelligence Information for CVE-2006-3668

IV. Related Vulnerabilities

V. Comments for CVE-2006-3668

Leave a comment