paul Posted July 19, 2006 Report Share Posted July 19, 2006 Kevin Kofler discovered multiple stack-based buffer overflows in the LookupTRM::lookup function in libtunepimp 0.4.2 that allow remote user-complicit attackers to cause a denial of service (application crash) and possibly execute code via a long (1) Album release date (MBE_ReleaseGetDate), (2) data, or (3) error strings. Updated packages have been patched to correct this issue. Link to comment Share on other sites More sharing options...
Recommended Posts