Multiple stack-based buffer overflows in the LookupTRM::lookup function in libtunepimp (TunePimp) 0.4.2 allow remote user-assisted malicious users to cause a denial of service (application crash) and possibly execute code via a long (1) Album release date (MBE_ReleaseGetDate), (2) data, or (3) error strings.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
libtunepimp libtunepimp 0.4.2 |