exploitDog

CVE-2006-4131

Опубликовано: 14 авг. 2006

Источник: nvd

CVSS2: 7.5

EPSS Средний

Описание

Multiple buffer overflows in ArcSoft MMS Composer 1.5.5.6, and possibly earlier, and 2.0.0.13, and possibly earlier, allow remote attackers to cause a denial of service (crash) or execute arbitrary code via crafted MMS (Multimedia Messaging Service) messages that trigger the overflows in the (1) M-Notification.ind, (2) M-Retrieve.conf (Header and Body), or (3) SMIL parsers.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:arcsoft:mms_composer:*:*:*:*:*:*:*:*

Версия до 1.5.5.6 (включая)

cpe:2.3:a:arcsoft:mms_composer:*:*:*:*:*:*:*:*

Версия до 2.0.0.13 (включая)

EPSS

Процентиль: 97%

0.29944

Средний

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-9w89-4x78-r6jx

github

почти 4 года назад

Multiple buffer overflows in ArcSoft MMS Composer 1.5.5.6, and possibly earlier, and 2.0.0.13, and possibly earlier, allow remote attackers to cause a denial of service (crash) or execute arbitrary code via crafted MMS (Multimedia Messaging Service) messages that trigger the overflows in the (1) M-Notification.ind, (2) M-Retrieve.conf (Header and Body), or (3) SMIL parsers.

EPSS

Процентиль: 97%

0.29944

Средний

7.5 High

CVSS2

Дефекты

NVD-CWE-Other