CVE-2006-4235
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
21/08/2006
Last modified:
20/07/2017
Description
Buffer overflow in the import project functionality in Sony SonicStage Mastering Studio 1.1.00 through 2.2.01 allows remote attackers to execute arbitrary code via a crafted SMP file.
Impact
Base Score 2.0
7.50
Severity 2.0
HIGH
Vulnerable products and versions
CPE | From | Up to |
---|---|---|
cpe:2.3:a:sony:sonicstage_mastering_studio:1.1.00:*:*:*:*:*:*:* | ||
cpe:2.3:a:sony:sonicstage_mastering_studio:1.2.00:*:*:*:*:*:*:* | ||
cpe:2.3:a:sony:sonicstage_mastering_studio:1.2.01:*:*:*:*:*:*:* | ||
cpe:2.3:a:sony:sonicstage_mastering_studio:1.2.02:*:*:*:*:*:*:* | ||
cpe:2.3:a:sony:sonicstage_mastering_studio:1.3.00:*:*:*:*:*:*:* | ||
cpe:2.3:a:sony:sonicstage_mastering_studio:1.4.00:*:*:*:*:*:*:* | ||
cpe:2.3:a:sony:sonicstage_mastering_studio:1.4.01:*:*:*:*:*:*:* | ||
cpe:2.3:a:sony:sonicstage_mastering_studio:1.4.02:*:*:*:*:*:*:* | ||
cpe:2.3:a:sony:sonicstage_mastering_studio:1.4.03:*:*:*:*:*:*:* | ||
cpe:2.3:a:sony:sonicstage_mastering_studio:2.0.00:*:*:*:*:*:*:* | ||
cpe:2.3:a:sony:sonicstage_mastering_studio:2.1.00:*:*:*:*:*:*:* | ||
cpe:2.3:a:sony:sonicstage_mastering_studio:2.1.01:*:*:*:*:*:*:* | ||
cpe:2.3:a:sony:sonicstage_mastering_studio:2.2.01:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://kb.sony-europe.com/KB/Solutions/EN/V00000_V00499/v00244.html
- http://secunia.com/advisories/21510
- http://www.kb.cert.org/vuls/id/697761
- http://www.osvdb.org/27966
- http://www.pentest.co.uk/documents/ptl-2006-01.html
- http://www.securityfocus.com/bid/19558
- http://www.vupen.com/english/advisories/2006/3286
- https://exchange.xforce.ibmcloud.com/vulnerabilities/28421