Buffer overflow in cddbd CD database server allows remote attackers to execute arbitrary commands via a long log message.
CVSS 2.0
Severity: HIGH
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| gracenote | cddbd | * |
Buffer overflow in GraceNote CDDBControl ActiveX Control, as used by multiple products that use Gracenote CDDB, allows remote attackers to execute arbitrary code via a long option string.
CVSS 2.0
Severity: HIGH
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| gracenote | cddbcontrol_activex_control | * |
The GraceNote GNSDK SDK before SVN Changeset 1.1.7 for Android might allow attackers to execute arbitrary code by leveraging a finalize method in a Serializable class that improperly passes an attacker-controlled pointer to a native function.
CVSS 2.0
Severity: HIGH
Problem Type: CWE-118,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| gracenote | gnsdk | * |