CVE-2006-2200 - OpenCVE

Stack-based buffer overflow in libmms, as used by (a) MiMMS 0.0.9 and (b) xine-lib 1.1.0 and earlier, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via the (1) send_command, (2) string_utf16, (3) get_data, and (4) get_media_packet functions, and possibly other functions.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity High

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:N/AC:H/Au:N/C:P/I:P/A:P

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Mimms	Mimms
Xine	Xine-lib

Configuration 1 [-]

OR	cpe:2.3:a:mimms:mimms:0.0.9:::::::*
	cpe:2.3:a:xine:xine-lib:1.1.0:::::::*

No data.

References

Link	Providers
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=374577
http://secunia.com/advisories/20749
http://secunia.com/advisories/20948
http://secunia.com/advisories/20964
http://secunia.com/advisories/21023
http://secunia.com/advisories/21036
http://secunia.com/advisories/21139
http://secunia.com/advisories/23218
http://secunia.com/advisories/23512
http://security.gentoo.org/glsa/glsa-200607-07.xml
http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.433842
http://sourceforge.net/project/shownotes.php?release_id=468432
http://www.mandriva.com/security/advisories?name=MDKSA-2006:117
http://www.mandriva.com/security/advisories?name=MDKSA-2006:121
http://www.securityfocus.com/bid/18608
http://www.ubuntu.com/usn/usn-309-1
http://www.ubuntu.com/usn/usn-315-1
http://www.vupen.com/english/advisories/2006/2487

History

No history.

MITRE

Status: PUBLISHED

Assigner: debian

Published: 2006-06-27T19:00:00

Updated: 2024-08-07T17:43:28.256Z

Reserved: 2006-05-04T00:00:00

Link: CVE-2006-2200

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2006-06-28T01:45:00.000

Modified: 2011-08-02T04:00:00.000

Link: CVE-2006-2200

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2006-06-22T00:00:00", "descriptions": [{"lang": "en", "value": "Stack-based buffer overflow in libmms, as used by (a) MiMMS 0.0.9 and (b) xine-lib 1.1.0 and earlier, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via the (1) send_command, (2) string_utf16, (3) get_data, and (4) get_media_packet functions, and possibly other functions."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2006-07-11T09:00:00", "orgId": "79363d38-fa19-49d1-9214-5f28da3f3ac5", "shortName": "debian"}, "references": [{"name": "23512", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/23512"}, {"name": "USN-315-1", "tags": ["vendor-advisory", "x_refsource_UBUNTU"], "url": "http://www.ubuntu.com/usn/usn-315-1"}, {"name": "ADV-2006-2487", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2006/2487"}, {"name": "21036", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/21036"}, {"name": "MDKSA-2006:117", "tags": ["vendor-advisory", "x_refsource_MANDRIVA"], "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:117"}, {"name": "SSA:2006-357-05", "tags": ["vendor-advisory", "x_refsource_SLACKWARE"], "url": "http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.433842"}, {"name": "USN-309-1", "tags": ["vendor-advisory", "x_refsource_UBUNTU"], "url": "http://www.ubuntu.com/usn/usn-309-1"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://sourceforge.net/project/shownotes.php?release_id=468432"}, {"name": "MDKSA-2006:121", "tags": ["vendor-advisory", "x_refsource_MANDRIVA"], "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:121"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=374577"}, {"name": "18608", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/18608"}, {"name": "20749", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/20749"}, {"name": "21023", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/21023"}, {"name": "23218", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/23218"}, {"name": "21139", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/21139"}, {"name": "20964", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/20964"}, {"name": "20948", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/20948"}, {"name": "GLSA-200607-07", "tags": ["vendor-advisory", "x_refsource_GENTOO"], "url": "http://security.gentoo.org/glsa/glsa-200607-07.xml"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "security@debian.org", "ID": "CVE-2006-2200", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Stack-based buffer overflow in libmms, as used by (a) MiMMS 0.0.9 and (b) xine-lib 1.1.0 and earlier, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via the (1) send_command, (2) string_utf16, (3) get_data, and (4) get_media_packet functions, and possibly other functions."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "23512", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/23512"}, {"name": "USN-315-1", "refsource": "UBUNTU", "url": "http://www.ubuntu.com/usn/usn-315-1"}, {"name": "ADV-2006-2487", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2006/2487"}, {"name": "21036", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/21036"}, {"name": "MDKSA-2006:117", "refsource": "MANDRIVA", "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:117"}, {"name": "SSA:2006-357-05", "refsource": "SLACKWARE", "url": "http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.433842"}, {"name": "USN-309-1", "refsource": "UBUNTU", "url": "http://www.ubuntu.com/usn/usn-309-1"}, {"name": "http://sourceforge.net/project/shownotes.php?release_id=468432", "refsource": "CONFIRM", "url": "http://sourceforge.net/project/shownotes.php?release_id=468432"}, {"name": "MDKSA-2006:121", "refsource": "MANDRIVA", "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:121"}, {"name": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=374577", "refsource": "CONFIRM", "url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=374577"}, {"name": "18608", "refsource": "BID", "url": "http://www.securityfocus.com/bid/18608"}, {"name": "20749", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/20749"}, {"name": "21023", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/21023"}, {"name": "23218", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/23218"}, {"name": "21139", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/21139"}, {"name": "20964", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/20964"}, {"name": "20948", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/20948"}, {"name": "GLSA-200607-07", "refsource": "GENTOO", "url": "http://security.gentoo.org/glsa/glsa-200607-07.xml"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T17:43:28.256Z"}, "title": "CVE Program Container", "references": [{"name": "23512", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/23512"}, {"name": "USN-315-1", "tags": ["vendor-advisory", "x_refsource_UBUNTU", "x_transferred"], "url": "http://www.ubuntu.com/usn/usn-315-1"}, {"name": "ADV-2006-2487", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2006/2487"}, {"name": "21036", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/21036"}, {"name": "MDKSA-2006:117", "tags": ["vendor-advisory", "x_refsource_MANDRIVA", "x_transferred"], "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:117"}, {"name": "SSA:2006-357-05", "tags": ["vendor-advisory", "x_refsource_SLACKWARE", "x_transferred"], "url": "http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.433842"}, {"name": "USN-309-1", "tags": ["vendor-advisory", "x_refsource_UBUNTU", "x_transferred"], "url": "http://www.ubuntu.com/usn/usn-309-1"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://sourceforge.net/project/shownotes.php?release_id=468432"}, {"name": "MDKSA-2006:121", "tags": ["vendor-advisory", "x_refsource_MANDRIVA", "x_transferred"], "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:121"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=374577"}, {"name": "18608", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/18608"}, {"name": "20749", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/20749"}, {"name": "21023", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/21023"}, {"name": "23218", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/23218"}, {"name": "21139", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/21139"}, {"name": "20964", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/20964"}, {"name": "20948", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/20948"}, {"name": "GLSA-200607-07", "tags": ["vendor-advisory", "x_refsource_GENTOO", "x_transferred"], "url": "http://security.gentoo.org/glsa/glsa-200607-07.xml"}]}]}, "cveMetadata": {"assignerOrgId": "79363d38-fa19-49d1-9214-5f28da3f3ac5", "assignerShortName": "debian", "cveId": "CVE-2006-2200", "datePublished": "2006-06-27T19:00:00", "dateReserved": "2006-05-04T00:00:00", "dateUpdated": "2024-08-07T17:43:28.256Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:mimms:mimms:0.0.9:*:*:*:*:*:*:*", "matchCriteriaId": "8336443A-DE31-4DD7-AA6A-82D7B33332A6", "vulnerable": true}, {"criteria": "cpe:2.3:a:xine:xine-lib:1.1.0:*:*:*:*:*:*:*", "matchCriteriaId": "FAB10333-6C25-4359-BB3F-D76468170825", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Stack-based buffer overflow in libmms, as used by (a) MiMMS 0.0.9 and (b) xine-lib 1.1.0 and earlier, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via the (1) send_command, (2) string_utf16, (3) get_data, and (4) get_media_packet functions, and possibly other functions."}, {"lang": "es", "value": "Desbordamiento de b\u00fafer basado en pila en libmms, utilizado por (a) MiMMs v0.0.9 y (b) xine-lib v1.1.0 y versiones anteriores, permite a atacantes remotos causar una denegaci\u00f3n de servicio (cuelgue de aplicaci\u00f3n) y posiblemente ejecutar c\u00f3digo arbitrario a trav\u00e9s de (1) send_command, (2) string_utf16, (3) get_data, y (4) funciones get_media_packet ,y posiblemente otras funciones.\r\n\r\n"}], "id": "CVE-2006-2200", "lastModified": "2011-08-02T04:00:00.000", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 4.9, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": true, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}]}, "published": "2006-06-28T01:45:00.000", "references": [{"source": "security@debian.org", "url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=374577"}, {"source": "security@debian.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/20749"}, {"source": "security@debian.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/20948"}, {"source": "security@debian.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/20964"}, {"source": "security@debian.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/21023"}, {"source": "security@debian.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/21036"}, {"source": "security@debian.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/21139"}, {"source": "security@debian.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/23218"}, {"source": "security@debian.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/23512"}, {"source": "security@debian.org", "url": "http://security.gentoo.org/glsa/glsa-200607-07.xml"}, {"source": "security@debian.org", "url": "http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.433842"}, {"source": "security@debian.org", "url": "http://sourceforge.net/project/shownotes.php?release_id=468432"}, {"source": "security@debian.org", "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:117"}, {"source": "security@debian.org", "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:121"}, {"source": "security@debian.org", "url": "http://www.securityfocus.com/bid/18608"}, {"source": "security@debian.org", "url": "http://www.ubuntu.com/usn/usn-309-1"}, {"source": "security@debian.org", "url": "http://www.ubuntu.com/usn/usn-315-1"}, {"source": "security@debian.org", "tags": ["Vendor Advisory"], "url": "http://www.vupen.com/english/advisories/2006/2487"}], "sourceIdentifier": "security@debian.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-119"}], "source": "nvd@nist.gov", "type": "Primary"}]}