CVE-2006-6539 - Vulnerability Details - OpenCVE

Multiple buffer overflows in Winamp Web Interface (Wawi) 7.5.13 and earlier (1) allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via an (a) long username or a (b) crafted packet to the FindBasicAuth function in security.cpp, related to the /browse URI; and allow remote authenticated users to cause a denial of service (application crash) and possibly execute arbitrary code via a long path string in the (2) Browse, (3) CControl::Download, and (4) CControl::Load functions, related to the file parameter in the /dl URI. NOTE: some of these details are obtained from third party information.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Flippet.org	Winamp Web Interface

Configuration 1 [-]

cpe:2.3:a:flippet.org:winamp_web_interface:*:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://aluigi.altervista.org/adv/wawix-adv.txt
http://lists.grok.org.uk/pipermail/full-disclosure/2006-December/051217.html
http://secunia.com/advisories/23292
http://securityreason.com/securityalert/2032
http://securitytracker.com/id?1017362
http://www.securityfocus.com/archive/1/454059/100/0/threaded
http://www.securityfocus.com/bid/21539
http://www.vupen.com/english/advisories/2006/4935
https://exchange.xforce.ibmcloud.com/vulnerabilities/30824
https://exchange.xforce.ibmcloud.com/vulnerabilities/30825

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2006-12-14T02:00:00

Updated: 2024-08-07T20:26:46.564Z

Reserved: 2006-12-13T00:00:00

Link: CVE-2006-6539

Vulnrichment

No data.

NVD

Status : Modified

Published: 2006-12-14T02:28:00.000

Modified: 2024-11-21T00:22:55.890

Link: CVE-2006-6539

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2006-12-10T00:00:00", "descriptions": [{"lang": "en", "value": "Multiple buffer overflows in Winamp Web Interface (Wawi) 7.5.13 and earlier (1) allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via an (a) long username or a (b) crafted packet to the FindBasicAuth function in security.cpp, related to the /browse URI; and allow remote authenticated users to cause a denial of service (application crash) and possibly execute arbitrary code via a long path string in the (2) Browse, (3) CControl::Download, and (4) CControl::Load functions, related to the file parameter in the /dl URI. NOTE: some of these details are obtained from third party information."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-17T20:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "winampwi-findbasicauth-bo(30824)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/30824"}, {"name": "20061210 Multiple vulnerabilities in Winamp Web Interface 7.5.13", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/454059/100/0/threaded"}, {"name": "23292", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/23292"}, {"name": "1017362", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://securitytracker.com/id?1017362"}, {"name": "21539", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/21539"}, {"name": "20061210 Multiple vulnerabilities in Winamp Web Interface 7.5.13", "tags": ["mailing-list", "x_refsource_FULLDISC"], "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2006-December/051217.html"}, {"name": "ADV-2006-4935", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2006/4935"}, {"name": "winampwi-multiple-functions-bo(30825)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/30825"}, {"name": "2032", "tags": ["third-party-advisory", "x_refsource_SREASON"], "url": "http://securityreason.com/securityalert/2032"}, {"tags": ["x_refsource_MISC"], "url": "http://aluigi.altervista.org/adv/wawix-adv.txt"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2006-6539", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Multiple buffer overflows in Winamp Web Interface (Wawi) 7.5.13 and earlier (1) allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via an (a) long username or a (b) crafted packet to the FindBasicAuth function in security.cpp, related to the /browse URI; and allow remote authenticated users to cause a denial of service (application crash) and possibly execute arbitrary code via a long path string in the (2) Browse, (3) CControl::Download, and (4) CControl::Load functions, related to the file parameter in the /dl URI. NOTE: some of these details are obtained from third party information."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "winampwi-findbasicauth-bo(30824)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/30824"}, {"name": "20061210 Multiple vulnerabilities in Winamp Web Interface 7.5.13", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/454059/100/0/threaded"}, {"name": "23292", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/23292"}, {"name": "1017362", "refsource": "SECTRACK", "url": "http://securitytracker.com/id?1017362"}, {"name": "21539", "refsource": "BID", "url": "http://www.securityfocus.com/bid/21539"}, {"name": "20061210 Multiple vulnerabilities in Winamp Web Interface 7.5.13", "refsource": "FULLDISC", "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2006-December/051217.html"}, {"name": "ADV-2006-4935", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2006/4935"}, {"name": "winampwi-multiple-functions-bo(30825)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/30825"}, {"name": "2032", "refsource": "SREASON", "url": "http://securityreason.com/securityalert/2032"}, {"name": "http://aluigi.altervista.org/adv/wawix-adv.txt", "refsource": "MISC", "url": "http://aluigi.altervista.org/adv/wawix-adv.txt"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T20:26:46.564Z"}, "title": "CVE Program Container", "references": [{"name": "winampwi-findbasicauth-bo(30824)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/30824"}, {"name": "20061210 Multiple vulnerabilities in Winamp Web Interface 7.5.13", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/454059/100/0/threaded"}, {"name": "23292", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/23292"}, {"name": "1017362", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://securitytracker.com/id?1017362"}, {"name": "21539", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/21539"}, {"name": "20061210 Multiple vulnerabilities in Winamp Web Interface 7.5.13", "tags": ["mailing-list", "x_refsource_FULLDISC", "x_transferred"], "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2006-December/051217.html"}, {"name": "ADV-2006-4935", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2006/4935"}, {"name": "winampwi-multiple-functions-bo(30825)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/30825"}, {"name": "2032", "tags": ["third-party-advisory", "x_refsource_SREASON", "x_transferred"], "url": "http://securityreason.com/securityalert/2032"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://aluigi.altervista.org/adv/wawix-adv.txt"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2006-6539", "datePublished": "2006-12-14T02:00:00", "dateReserved": "2006-12-13T00:00:00", "dateUpdated": "2024-08-07T20:26:46.564Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:flippet.org:winamp_web_interface:*:*:*:*:*:*:*:*", "matchCriteriaId": "2E950761-022E-46A3-99F3-52F645AE1F60", "versionEndIncluding": "7.5.13", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Multiple buffer overflows in Winamp Web Interface (Wawi) 7.5.13 and earlier (1) allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via an (a) long username or a (b) crafted packet to the FindBasicAuth function in security.cpp, related to the /browse URI; and allow remote authenticated users to cause a denial of service (application crash) and possibly execute arbitrary code via a long path string in the (2) Browse, (3) CControl::Download, and (4) CControl::Load functions, related to the file parameter in the /dl URI. NOTE: some of these details are obtained from third party information."}, {"lang": "es", "value": "M\u00faltiples desbordamientos de b\u00fafer en el Winamp Web Interface (Wawi) 7.5.13 y versiones anteriores (1) permite a atacantes remotos provocar una denegaci\u00f3n de servicio (ca\u00edda de una aplicaci\u00f3n) y ejecutar c\u00f3digo de su elecci\u00f3n a trav\u00e9s de (a) un nombre de usuario largo o (b) un paquete modificado para la funci\u00f3n FindBasicAuth de security.cpp, relacionado con el /browse URI, permite a usuarios remotos autenticados provocar una denegaci\u00f3n de servicio (ca\u00edda de la aplicaci\u00f3n) y la posibilidad de ejecutar c\u00f3digo de su elecci\u00f3n a trav\u00e9s de una cadena larga en la ruta en las funciones (2) Browse, (3) CControl::Download y (4) CControl::Load, relacionado con el par\u00e1metro de fichero en el /dl URI. NOTA: algunos de los detalles se han obtenido a partir de la informaci\u00f3n de terceros."}], "id": "CVE-2006-6539", "lastModified": "2024-11-21T00:22:55.890", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 10.0, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2006-12-14T02:28:00.000", "references": [{"source": "cve@mitre.org", "url": "http://aluigi.altervista.org/adv/wawix-adv.txt"}, {"source": "cve@mitre.org", "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2006-December/051217.html"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/23292"}, {"source": "cve@mitre.org", "url": "http://securityreason.com/securityalert/2032"}, {"source": "cve@mitre.org", "url": "http://securitytracker.com/id?1017362"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/454059/100/0/threaded"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/21539"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2006/4935"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/30824"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/30825"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://aluigi.altervista.org/adv/wawix-adv.txt"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2006-December/051217.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/23292"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://securityreason.com/securityalert/2032"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://securitytracker.com/id?1017362"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/archive/1/454059/100/0/threaded"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/21539"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.vupen.com/english/advisories/2006/4935"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/30824"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/30825"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}