Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple buffer overflows in libmusicbrainz (aka mb_client or MusicBrainz Client Library) 2.1.2 and earlier, and SVN 8406 and earlier, allow remote attackers to cause a denial of service (crash) or execute arbitrary code via (1) a long Location header by the HTTP server, which triggers an overflow in the MBHttp::Download function in lib/http.cpp; and (2) a long URL in RDF data, as demonstrated by a URL in an rdf:resource field in an RDF XML document, which triggers overflows in many functions in lib/rdfparse.c.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Libmusicbrainz多个缓冲区溢出漏洞
Vulnerability Description
libmusicbrainz(也称mb_client或MusicBrainz Client Library) 2.1.2及早期版本,SVN 8406及早期版本中存在多个缓冲区溢出漏洞,远程攻击者可借助以下方式触发拒绝服务攻击(崩溃)或执行任意代码:(1) 该HTTP服务器的一个超长Location头,会在MBHttp::Download function in lib/http.cpp程序中引发溢出;以及(2) RDF数据中一个超长URL,如通过RDF XML文档中的rdf:resource字段中的URL
CVSS Information
N/A
Vulnerability Type
N/A