cpe:/a:dynamic_universal_music_bibliotheque:dumb:0.9.3 CVE-2006-3668 2006-07-18T11:47:00.000-04:00 2017-07-19T21:32:28.633-04:00 7.6 NETWORK HIGH NONE COMPLETE COMPLETE COMPLETE http://nvd.nist.gov 2006-07-19T23:11:00.000-04:00 ALLOWS_ADMIN_ACCESS SREASON 1240 BID 19025 SECUNIA 21092 SECUNIA 21184 SECUNIA 21416 VUPEN ADV-2006-2835 DEBIAN DSA-1123 GENTOO GLSA-200608-14 XF dumb-itreadenvelope-bo(27789) MISC http://aluigi.altervista.org/adv/dumbit-adv.txt Heap-based buffer overflow in the it_read_envelope function in Dynamic Universal Music Bibliotheque (DUMB) 0.9.3 and earlier and current CVS as of 20060716, including libdumb, allows user-assisted attackers to execute arbitrary code via a ".it" (Impulse Tracker) file with an envelope with a large number of nodes.