Unrated severityNVD Advisory· Published Aug 9, 2006· Updated Apr 16, 2026
CVE-2006-4046
CVE-2006-4046
Description
Multiple stack-based buffer overflows in Open Cubic Player 2.6.0pre6 and earlier for Windows, and 0.1.10_rc5 and earlier on Linux/BSD, allow remote attackers to execute arbitrary code via (1) a large .S3M file handled by the mpLoadS3M function, (2) a crafted .IT file handled by the itplayerclass::module::load function, (3) a crafted .ULT file handled by the mpLoadULT function, or (4) a crafted .AMS file handled by the mpLoadAMS function.
Affected products
1- cpe:2.3:a:open_cubic_player:open_cubic_player:*:*:*:*:*:*:*:*Range: <=0.1.10_rc5
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
12- secunia.com/advisories/21267nvdVendor Advisory
- aluigi.altervista.org/adv/ocpbof-adv.txtnvd
- securityreason.com/securityalert/1349nvd
- securitytracker.com/idnvd
- www.securityfocus.com/archive/1/441730/100/100/threadednvd
- www.securityfocus.com/bid/19262nvd
- www.vupen.com/english/advisories/2006/3078nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/28103nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/28104nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/28105nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/28106nvd
- www.exploit-db.com/exploits/2094nvd
News mentions
0No linked articles in our index yet.