search for: cddbd

...When I started examining XMCD I thought the scope of problems it may result in was limited to it running as an suid root program on the local host. It seems the extent that it may compromise the vulnerability of your host may extend far beyond that. The handling of input returned from a remote cddbd server appears suspect with respect to buffer handling, meaning that if a cddb server has had its security compromised, it could return false responses to database queries that could result in a buffer overflow allowing the cddb server to execute arbitrary code on your machine. Because of the majo...

...When I started examining XMCD I thought the scope of problems it may result in was limited to it running as an suid root program on the local host. It seems the extent that it may compromise the vulnerability of your host may extend far beyond that. The handling of input returned from a remote cddbd server appears suspect with respect to buffer handling, meaning that if a cddb server has had its security compromised, it could return false responses to database queries that could result in a buffer overflow allowing the cddb server to execute arbitrary code on your machine. Because of the majo...