Vulnerability Details : CVE-2006-6665
Public exploit exists!
Buffer overflow in Astonsoft DeepBurner Pro and Free 1.8.0 and earlier allows user-assisted remote attackers to execute arbitrary code via a long file name tag in a dbr file.
Vulnerability category: OverflowExecute code
Products affected by CVE-2006-6665
- cpe:2.3:a:astonsoft:deepburner:*:*:free:*:*:*:*:*
- cpe:2.3:a:astonsoft:deepburner:*:*:pro:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2006-6665
91.70%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 99 %
Percentile, the proportion of vulnerabilities that are scored at or less
Metasploit modules for CVE-2006-6665
-
AstonSoft DeepBurner (DBR File) Path Buffer Overflow
Disclosure Date: 2006-12-19First seen: 2020-04-26exploit/windows/fileformat/deepburner_pathThis module exploits a stack-based buffer overflow in versions 1.9.0.228, 1.8.0, and possibly other versions of AstonSoft's DeepBurner (Pro, Lite, etc). An attacker must send the file to victim and the victim must open the file. Alternatively it may be possible to
CVSS scores for CVE-2006-6665
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
6.8
|
MEDIUM | AV:N/AC:M/Au:N/C:P/I:P/A:P |
8.6
|
6.4
|
NIST |
References for CVE-2006-6665
-
https://www.exploit-db.com/exploits/2950
AstonSoft DeepBurner 1.8.0 - '.dbr' File Parsing Buffer Overflow - Windows local Exploit
-
http://www.vupen.com/english/advisories/2006/5066
-
http://www.securityfocus.com/bid/21657
AstonSoft DeepBurner DBR Compilation Buffer Overflow Vulnerability
Jump to