Search
Find a vulnerability
Search criteria
4 vulnerabilities found for cddbcontrol_activex_control by gracenote
CVE-2007-0443 (GCVE-0-2007-0443)
Vulnerability from nvd – Published: 2007-04-24 16:00 – Updated: 2024-08-07 12:19
VLAI
EPSS
VEX
Summary
Multiple buffer overflows in the CDDBControl ActiveX control in Gracenote CDDB before 20070418 allow remote attackers to execute arbitrary code via long values for certain Proxy configuration parameters.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
9 references
| URL | Tags |
|---|---|
| http://www.securityfocus.com/bid/23567 | vdb-entryx_refsource_BID |
| http://www.securityfocus.com/archive/1/466403/100… | mailing-listx_refsource_BUGTRAQ |
| http://www.gracenote.com/corporate/FAQs.html/faqs… | x_refsource_CONFIRM |
| https://exchange.xforce.ibmcloud.com/vulnerabilit… | vdb-entryx_refsource_XF |
| http://www.zerodayinitiative.com/advisories/ZDI-0… | x_refsource_MISC |
| http://osvdb.org/34327 | vdb-entryx_refsource_OSVDB |
| http://www.vupen.com/english/advisories/2007/1475 | vdb-entryx_refsource_VUPEN |
| http://secunia.com/advisories/22924 | third-party-advisoryx_refsource_SECUNIA |
| http://www.securitytracker.com/id?1017937 | vdb-entryx_refsource_SECTRACK |
Date Public
2007-04-18 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T12:19:29.960Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "23567",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/23567"
},
{
"name": "20070420 ZDI-07-021: GraceNote CDDBControl ActiveX Buffer Overflow Vulnerability",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://www.securityfocus.com/archive/1/466403/100/0/threaded"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.gracenote.com/corporate/FAQs.html/faqset=update/page=0"
},
{
"name": "cddbcontrol-activex-bo(33773)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33773"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://www.zerodayinitiative.com/advisories/ZDI-07-021.html"
},
{
"name": "34327",
"tags": [
"vdb-entry",
"x_refsource_OSVDB",
"x_transferred"
],
"url": "http://osvdb.org/34327"
},
{
"name": "ADV-2007-1475",
"tags": [
"vdb-entry",
"x_refsource_VUPEN",
"x_transferred"
],
"url": "http://www.vupen.com/english/advisories/2007/1475"
},
{
"name": "22924",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/22924"
},
{
"name": "1017937",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://www.securitytracker.com/id?1017937"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2007-04-18T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "Multiple buffer overflows in the CDDBControl ActiveX control in Gracenote CDDB before 20070418 allow remote attackers to execute arbitrary code via long values for certain Proxy configuration parameters."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2018-10-16T14:57:01.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "23567",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/23567"
},
{
"name": "20070420 ZDI-07-021: GraceNote CDDBControl ActiveX Buffer Overflow Vulnerability",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://www.securityfocus.com/archive/1/466403/100/0/threaded"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.gracenote.com/corporate/FAQs.html/faqset=update/page=0"
},
{
"name": "cddbcontrol-activex-bo(33773)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33773"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://www.zerodayinitiative.com/advisories/ZDI-07-021.html"
},
{
"name": "34327",
"tags": [
"vdb-entry",
"x_refsource_OSVDB"
],
"url": "http://osvdb.org/34327"
},
{
"name": "ADV-2007-1475",
"tags": [
"vdb-entry",
"x_refsource_VUPEN"
],
"url": "http://www.vupen.com/english/advisories/2007/1475"
},
{
"name": "22924",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/22924"
},
{
"name": "1017937",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://www.securitytracker.com/id?1017937"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2007-0443",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Multiple buffer overflows in the CDDBControl ActiveX control in Gracenote CDDB before 20070418 allow remote attackers to execute arbitrary code via long values for certain Proxy configuration parameters."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "23567",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/23567"
},
{
"name": "20070420 ZDI-07-021: GraceNote CDDBControl ActiveX Buffer Overflow Vulnerability",
"refsource": "BUGTRAQ",
"url": "http://www.securityfocus.com/archive/1/466403/100/0/threaded"
},
{
"name": "http://www.gracenote.com/corporate/FAQs.html/faqset=update/page=0",
"refsource": "CONFIRM",
"url": "http://www.gracenote.com/corporate/FAQs.html/faqset=update/page=0"
},
{
"name": "cddbcontrol-activex-bo(33773)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33773"
},
{
"name": "http://www.zerodayinitiative.com/advisories/ZDI-07-021.html",
"refsource": "MISC",
"url": "http://www.zerodayinitiative.com/advisories/ZDI-07-021.html"
},
{
"name": "34327",
"refsource": "OSVDB",
"url": "http://osvdb.org/34327"
},
{
"name": "ADV-2007-1475",
"refsource": "VUPEN",
"url": "http://www.vupen.com/english/advisories/2007/1475"
},
{
"name": "22924",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/22924"
},
{
"name": "1017937",
"refsource": "SECTRACK",
"url": "http://www.securitytracker.com/id?1017937"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2007-0443",
"datePublished": "2007-04-24T16:00:00.000Z",
"dateReserved": "2007-01-23T00:00:00.000Z",
"dateUpdated": "2024-08-07T12:19:29.960Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2006-3134 (GCVE-0-2006-3134)
Vulnerability from nvd – Published: 2006-06-27 17:00 – Updated: 2024-08-07 18:16
VLAI
EPSS
VEX
Summary
Buffer overflow in GraceNote CDDBControl ActiveX Control, as used by multiple products that use Gracenote CDDB, allows remote attackers to execute arbitrary code via a long option string.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
13 references
| URL | Tags |
|---|---|
| http://europe.nokia.com/nokia/0%2C%2C93034%2C00.html | x_refsource_MISC |
| http://www.securityfocus.com/bid/18678 | vdb-entryx_refsource_BID |
| http://lists.grok.org.uk/pipermail/full-disclosur… | mailing-listx_refsource_FULLDISC |
| http://www.osvdb.org/26874 | vdb-entryx_refsource_OSVDB |
| http://www.vupen.com/english/advisories/2006/2562 | vdb-entryx_refsource_VUPEN |
| http://www.kb.cert.org/vuls/id/701121 | third-party-advisoryx_refsource_CERT-VN |
| http://www.zerodayinitiative.com/advisories/ZDI-0… | x_refsource_MISC |
| http://www.vupen.com/english/advisories/2006/2563 | vdb-entryx_refsource_VUPEN |
| http://www.gracenote.com/sec062706/SonySecurityNo… | x_refsource_CONFIRM |
| http://secunia.com/advisories/20861 | third-party-advisoryx_refsource_SECUNIA |
| http://securitytracker.com/id?1016389 | vdb-entryx_refsource_SECTRACK |
| https://exchange.xforce.ibmcloud.com/vulnerabilit… | vdb-entryx_refsource_XF |
| http://secunia.com/advisories/20862 | third-party-advisoryx_refsource_SECUNIA |
Date Public
2006-06-27 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T18:16:05.963Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://europe.nokia.com/nokia/0%2C%2C93034%2C00.html"
},
{
"name": "18678",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/18678"
},
{
"name": "20060627 ZDI-06-019: GraceNote CDDBControl ActiveX Buffer Overflow Vulnerability",
"tags": [
"mailing-list",
"x_refsource_FULLDISC",
"x_transferred"
],
"url": "http://lists.grok.org.uk/pipermail/full-disclosure/2006-June/047420.html"
},
{
"name": "26874",
"tags": [
"vdb-entry",
"x_refsource_OSVDB",
"x_transferred"
],
"url": "http://www.osvdb.org/26874"
},
{
"name": "ADV-2006-2562",
"tags": [
"vdb-entry",
"x_refsource_VUPEN",
"x_transferred"
],
"url": "http://www.vupen.com/english/advisories/2006/2562"
},
{
"name": "VU#701121",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN",
"x_transferred"
],
"url": "http://www.kb.cert.org/vuls/id/701121"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://www.zerodayinitiative.com/advisories/ZDI-06-019.html"
},
{
"name": "ADV-2006-2563",
"tags": [
"vdb-entry",
"x_refsource_VUPEN",
"x_transferred"
],
"url": "http://www.vupen.com/english/advisories/2006/2563"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.gracenote.com/sec062706/SonySecurityNotification.html"
},
{
"name": "20861",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/20861"
},
{
"name": "1016389",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://securitytracker.com/id?1016389"
},
{
"name": "gracenote-cddb-activex-bo(27416)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27416"
},
{
"name": "20862",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/20862"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2006-06-27T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "Buffer overflow in GraceNote CDDBControl ActiveX Control, as used by multiple products that use Gracenote CDDB, allows remote attackers to execute arbitrary code via a long option string."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-07-19T15:57:01.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "http://europe.nokia.com/nokia/0%2C%2C93034%2C00.html"
},
{
"name": "18678",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/18678"
},
{
"name": "20060627 ZDI-06-019: GraceNote CDDBControl ActiveX Buffer Overflow Vulnerability",
"tags": [
"mailing-list",
"x_refsource_FULLDISC"
],
"url": "http://lists.grok.org.uk/pipermail/full-disclosure/2006-June/047420.html"
},
{
"name": "26874",
"tags": [
"vdb-entry",
"x_refsource_OSVDB"
],
"url": "http://www.osvdb.org/26874"
},
{
"name": "ADV-2006-2562",
"tags": [
"vdb-entry",
"x_refsource_VUPEN"
],
"url": "http://www.vupen.com/english/advisories/2006/2562"
},
{
"name": "VU#701121",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN"
],
"url": "http://www.kb.cert.org/vuls/id/701121"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://www.zerodayinitiative.com/advisories/ZDI-06-019.html"
},
{
"name": "ADV-2006-2563",
"tags": [
"vdb-entry",
"x_refsource_VUPEN"
],
"url": "http://www.vupen.com/english/advisories/2006/2563"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.gracenote.com/sec062706/SonySecurityNotification.html"
},
{
"name": "20861",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/20861"
},
{
"name": "1016389",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://securitytracker.com/id?1016389"
},
{
"name": "gracenote-cddb-activex-bo(27416)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27416"
},
{
"name": "20862",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/20862"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2006-3134",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Buffer overflow in GraceNote CDDBControl ActiveX Control, as used by multiple products that use Gracenote CDDB, allows remote attackers to execute arbitrary code via a long option string."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://europe.nokia.com/nokia/0,,93034,00.html",
"refsource": "MISC",
"url": "http://europe.nokia.com/nokia/0,,93034,00.html"
},
{
"name": "18678",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/18678"
},
{
"name": "20060627 ZDI-06-019: GraceNote CDDBControl ActiveX Buffer Overflow Vulnerability",
"refsource": "FULLDISC",
"url": "http://lists.grok.org.uk/pipermail/full-disclosure/2006-June/047420.html"
},
{
"name": "26874",
"refsource": "OSVDB",
"url": "http://www.osvdb.org/26874"
},
{
"name": "ADV-2006-2562",
"refsource": "VUPEN",
"url": "http://www.vupen.com/english/advisories/2006/2562"
},
{
"name": "VU#701121",
"refsource": "CERT-VN",
"url": "http://www.kb.cert.org/vuls/id/701121"
},
{
"name": "http://www.zerodayinitiative.com/advisories/ZDI-06-019.html",
"refsource": "MISC",
"url": "http://www.zerodayinitiative.com/advisories/ZDI-06-019.html"
},
{
"name": "ADV-2006-2563",
"refsource": "VUPEN",
"url": "http://www.vupen.com/english/advisories/2006/2563"
},
{
"name": "http://www.gracenote.com/sec062706/SonySecurityNotification.html",
"refsource": "CONFIRM",
"url": "http://www.gracenote.com/sec062706/SonySecurityNotification.html"
},
{
"name": "20861",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/20861"
},
{
"name": "1016389",
"refsource": "SECTRACK",
"url": "http://securitytracker.com/id?1016389"
},
{
"name": "gracenote-cddb-activex-bo(27416)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27416"
},
{
"name": "20862",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/20862"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2006-3134",
"datePublished": "2006-06-27T17:00:00.000Z",
"dateReserved": "2006-06-22T00:00:00.000Z",
"dateUpdated": "2024-08-07T18:16:05.963Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2007-0443 (GCVE-0-2007-0443)
Vulnerability from cvelistv5 – Published: 2007-04-24 16:00 – Updated: 2024-08-07 12:19
VLAI
EPSS
VEX
Summary
Multiple buffer overflows in the CDDBControl ActiveX control in Gracenote CDDB before 20070418 allow remote attackers to execute arbitrary code via long values for certain Proxy configuration parameters.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
9 references
| URL | Tags |
|---|---|
| http://www.securityfocus.com/bid/23567 | vdb-entryx_refsource_BID |
| http://www.securityfocus.com/archive/1/466403/100… | mailing-listx_refsource_BUGTRAQ |
| http://www.gracenote.com/corporate/FAQs.html/faqs… | x_refsource_CONFIRM |
| https://exchange.xforce.ibmcloud.com/vulnerabilit… | vdb-entryx_refsource_XF |
| http://www.zerodayinitiative.com/advisories/ZDI-0… | x_refsource_MISC |
| http://osvdb.org/34327 | vdb-entryx_refsource_OSVDB |
| http://www.vupen.com/english/advisories/2007/1475 | vdb-entryx_refsource_VUPEN |
| http://secunia.com/advisories/22924 | third-party-advisoryx_refsource_SECUNIA |
| http://www.securitytracker.com/id?1017937 | vdb-entryx_refsource_SECTRACK |
Date Public
2007-04-18 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T12:19:29.960Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "23567",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/23567"
},
{
"name": "20070420 ZDI-07-021: GraceNote CDDBControl ActiveX Buffer Overflow Vulnerability",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://www.securityfocus.com/archive/1/466403/100/0/threaded"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.gracenote.com/corporate/FAQs.html/faqset=update/page=0"
},
{
"name": "cddbcontrol-activex-bo(33773)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33773"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://www.zerodayinitiative.com/advisories/ZDI-07-021.html"
},
{
"name": "34327",
"tags": [
"vdb-entry",
"x_refsource_OSVDB",
"x_transferred"
],
"url": "http://osvdb.org/34327"
},
{
"name": "ADV-2007-1475",
"tags": [
"vdb-entry",
"x_refsource_VUPEN",
"x_transferred"
],
"url": "http://www.vupen.com/english/advisories/2007/1475"
},
{
"name": "22924",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/22924"
},
{
"name": "1017937",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://www.securitytracker.com/id?1017937"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2007-04-18T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "Multiple buffer overflows in the CDDBControl ActiveX control in Gracenote CDDB before 20070418 allow remote attackers to execute arbitrary code via long values for certain Proxy configuration parameters."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2018-10-16T14:57:01.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "23567",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/23567"
},
{
"name": "20070420 ZDI-07-021: GraceNote CDDBControl ActiveX Buffer Overflow Vulnerability",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://www.securityfocus.com/archive/1/466403/100/0/threaded"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.gracenote.com/corporate/FAQs.html/faqset=update/page=0"
},
{
"name": "cddbcontrol-activex-bo(33773)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33773"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://www.zerodayinitiative.com/advisories/ZDI-07-021.html"
},
{
"name": "34327",
"tags": [
"vdb-entry",
"x_refsource_OSVDB"
],
"url": "http://osvdb.org/34327"
},
{
"name": "ADV-2007-1475",
"tags": [
"vdb-entry",
"x_refsource_VUPEN"
],
"url": "http://www.vupen.com/english/advisories/2007/1475"
},
{
"name": "22924",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/22924"
},
{
"name": "1017937",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://www.securitytracker.com/id?1017937"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2007-0443",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Multiple buffer overflows in the CDDBControl ActiveX control in Gracenote CDDB before 20070418 allow remote attackers to execute arbitrary code via long values for certain Proxy configuration parameters."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "23567",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/23567"
},
{
"name": "20070420 ZDI-07-021: GraceNote CDDBControl ActiveX Buffer Overflow Vulnerability",
"refsource": "BUGTRAQ",
"url": "http://www.securityfocus.com/archive/1/466403/100/0/threaded"
},
{
"name": "http://www.gracenote.com/corporate/FAQs.html/faqset=update/page=0",
"refsource": "CONFIRM",
"url": "http://www.gracenote.com/corporate/FAQs.html/faqset=update/page=0"
},
{
"name": "cddbcontrol-activex-bo(33773)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33773"
},
{
"name": "http://www.zerodayinitiative.com/advisories/ZDI-07-021.html",
"refsource": "MISC",
"url": "http://www.zerodayinitiative.com/advisories/ZDI-07-021.html"
},
{
"name": "34327",
"refsource": "OSVDB",
"url": "http://osvdb.org/34327"
},
{
"name": "ADV-2007-1475",
"refsource": "VUPEN",
"url": "http://www.vupen.com/english/advisories/2007/1475"
},
{
"name": "22924",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/22924"
},
{
"name": "1017937",
"refsource": "SECTRACK",
"url": "http://www.securitytracker.com/id?1017937"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2007-0443",
"datePublished": "2007-04-24T16:00:00.000Z",
"dateReserved": "2007-01-23T00:00:00.000Z",
"dateUpdated": "2024-08-07T12:19:29.960Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2006-3134 (GCVE-0-2006-3134)
Vulnerability from cvelistv5 – Published: 2006-06-27 17:00 – Updated: 2024-08-07 18:16
VLAI
EPSS
VEX
Summary
Buffer overflow in GraceNote CDDBControl ActiveX Control, as used by multiple products that use Gracenote CDDB, allows remote attackers to execute arbitrary code via a long option string.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
13 references
| URL | Tags |
|---|---|
| http://europe.nokia.com/nokia/0%2C%2C93034%2C00.html | x_refsource_MISC |
| http://www.securityfocus.com/bid/18678 | vdb-entryx_refsource_BID |
| http://lists.grok.org.uk/pipermail/full-disclosur… | mailing-listx_refsource_FULLDISC |
| http://www.osvdb.org/26874 | vdb-entryx_refsource_OSVDB |
| http://www.vupen.com/english/advisories/2006/2562 | vdb-entryx_refsource_VUPEN |
| http://www.kb.cert.org/vuls/id/701121 | third-party-advisoryx_refsource_CERT-VN |
| http://www.zerodayinitiative.com/advisories/ZDI-0… | x_refsource_MISC |
| http://www.vupen.com/english/advisories/2006/2563 | vdb-entryx_refsource_VUPEN |
| http://www.gracenote.com/sec062706/SonySecurityNo… | x_refsource_CONFIRM |
| http://secunia.com/advisories/20861 | third-party-advisoryx_refsource_SECUNIA |
| http://securitytracker.com/id?1016389 | vdb-entryx_refsource_SECTRACK |
| https://exchange.xforce.ibmcloud.com/vulnerabilit… | vdb-entryx_refsource_XF |
| http://secunia.com/advisories/20862 | third-party-advisoryx_refsource_SECUNIA |
Date Public
2006-06-27 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T18:16:05.963Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://europe.nokia.com/nokia/0%2C%2C93034%2C00.html"
},
{
"name": "18678",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/18678"
},
{
"name": "20060627 ZDI-06-019: GraceNote CDDBControl ActiveX Buffer Overflow Vulnerability",
"tags": [
"mailing-list",
"x_refsource_FULLDISC",
"x_transferred"
],
"url": "http://lists.grok.org.uk/pipermail/full-disclosure/2006-June/047420.html"
},
{
"name": "26874",
"tags": [
"vdb-entry",
"x_refsource_OSVDB",
"x_transferred"
],
"url": "http://www.osvdb.org/26874"
},
{
"name": "ADV-2006-2562",
"tags": [
"vdb-entry",
"x_refsource_VUPEN",
"x_transferred"
],
"url": "http://www.vupen.com/english/advisories/2006/2562"
},
{
"name": "VU#701121",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN",
"x_transferred"
],
"url": "http://www.kb.cert.org/vuls/id/701121"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://www.zerodayinitiative.com/advisories/ZDI-06-019.html"
},
{
"name": "ADV-2006-2563",
"tags": [
"vdb-entry",
"x_refsource_VUPEN",
"x_transferred"
],
"url": "http://www.vupen.com/english/advisories/2006/2563"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.gracenote.com/sec062706/SonySecurityNotification.html"
},
{
"name": "20861",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/20861"
},
{
"name": "1016389",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://securitytracker.com/id?1016389"
},
{
"name": "gracenote-cddb-activex-bo(27416)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27416"
},
{
"name": "20862",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/20862"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2006-06-27T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "Buffer overflow in GraceNote CDDBControl ActiveX Control, as used by multiple products that use Gracenote CDDB, allows remote attackers to execute arbitrary code via a long option string."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-07-19T15:57:01.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "http://europe.nokia.com/nokia/0%2C%2C93034%2C00.html"
},
{
"name": "18678",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/18678"
},
{
"name": "20060627 ZDI-06-019: GraceNote CDDBControl ActiveX Buffer Overflow Vulnerability",
"tags": [
"mailing-list",
"x_refsource_FULLDISC"
],
"url": "http://lists.grok.org.uk/pipermail/full-disclosure/2006-June/047420.html"
},
{
"name": "26874",
"tags": [
"vdb-entry",
"x_refsource_OSVDB"
],
"url": "http://www.osvdb.org/26874"
},
{
"name": "ADV-2006-2562",
"tags": [
"vdb-entry",
"x_refsource_VUPEN"
],
"url": "http://www.vupen.com/english/advisories/2006/2562"
},
{
"name": "VU#701121",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN"
],
"url": "http://www.kb.cert.org/vuls/id/701121"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://www.zerodayinitiative.com/advisories/ZDI-06-019.html"
},
{
"name": "ADV-2006-2563",
"tags": [
"vdb-entry",
"x_refsource_VUPEN"
],
"url": "http://www.vupen.com/english/advisories/2006/2563"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.gracenote.com/sec062706/SonySecurityNotification.html"
},
{
"name": "20861",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/20861"
},
{
"name": "1016389",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://securitytracker.com/id?1016389"
},
{
"name": "gracenote-cddb-activex-bo(27416)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27416"
},
{
"name": "20862",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/20862"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2006-3134",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Buffer overflow in GraceNote CDDBControl ActiveX Control, as used by multiple products that use Gracenote CDDB, allows remote attackers to execute arbitrary code via a long option string."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://europe.nokia.com/nokia/0,,93034,00.html",
"refsource": "MISC",
"url": "http://europe.nokia.com/nokia/0,,93034,00.html"
},
{
"name": "18678",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/18678"
},
{
"name": "20060627 ZDI-06-019: GraceNote CDDBControl ActiveX Buffer Overflow Vulnerability",
"refsource": "FULLDISC",
"url": "http://lists.grok.org.uk/pipermail/full-disclosure/2006-June/047420.html"
},
{
"name": "26874",
"refsource": "OSVDB",
"url": "http://www.osvdb.org/26874"
},
{
"name": "ADV-2006-2562",
"refsource": "VUPEN",
"url": "http://www.vupen.com/english/advisories/2006/2562"
},
{
"name": "VU#701121",
"refsource": "CERT-VN",
"url": "http://www.kb.cert.org/vuls/id/701121"
},
{
"name": "http://www.zerodayinitiative.com/advisories/ZDI-06-019.html",
"refsource": "MISC",
"url": "http://www.zerodayinitiative.com/advisories/ZDI-06-019.html"
},
{
"name": "ADV-2006-2563",
"refsource": "VUPEN",
"url": "http://www.vupen.com/english/advisories/2006/2563"
},
{
"name": "http://www.gracenote.com/sec062706/SonySecurityNotification.html",
"refsource": "CONFIRM",
"url": "http://www.gracenote.com/sec062706/SonySecurityNotification.html"
},
{
"name": "20861",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/20861"
},
{
"name": "1016389",
"refsource": "SECTRACK",
"url": "http://securitytracker.com/id?1016389"
},
{
"name": "gracenote-cddb-activex-bo(27416)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27416"
},
{
"name": "20862",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/20862"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2006-3134",
"datePublished": "2006-06-27T17:00:00.000Z",
"dateReserved": "2006-06-22T00:00:00.000Z",
"dateUpdated": "2024-08-07T18:16:05.963Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}