CVE-2006-6199
50Vexday Risk Score
Patch soon. It has a working public exploit.
ssvc Attendepss 65%
from disclosure to weapon618 days
Published on NVDDec 1
1st PoC+618d
metasploit+976d
exploitation probability
65%top 1% of all CVEs
observed exploitation
nono source reports it
11 public exploit(s)
Stack-based buffer overflow in BlazeVideo BlazeDVD Standard and Professional 5.0, and possibly earlier, allows remote attackers to execute arbitrary code via a long filename in a PLF playlist.
Affected products
n/a · n/apublic PoCs found — 11
cve_referencewww.exploit-db.com/exploits/23783unverifiedcve_referencewww.exploit-db.com/exploits/26889unverifiedexploitdbwww.exploit-db.com/exploits/13905unverifiedexploitdbwww.exploit-db.com/exploits/9360unverifiedexploitdbwww.exploit-db.com/exploits/23783unverifiedexploitdbwww.exploit-db.com/exploits/29263unverifiedexploitdbwww.exploit-db.com/exploits/26889unverifiedcve_referencewww.exploit-db.com/exploits/2880unverifiedexploitdbwww.exploit-db.com/exploits/6217unverifiedexploitdbwww.exploit-db.com/exploits/16618unverifiedexploitdbwww.exploit-db.com/exploits/9329unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
References
http://secunia.com/advisories/23041https://exchange.xforce.ibmcloud.com/vulnerabilities/30567https://www.exploit-db.com/exploits/2880http://whitestar.linuxbox.org/pipermail/exploits/2006-December/000065.htmlhttp://www.exploit-db.com/exploits/23783http://www.exploit-db.com/exploits/26889http://www.osvdb.org/30770http://www.securityfocus.com/bid/21337http://www.vupen.com/english/advisories/2006/4764