CVE-2006-1356

Description

Stack-based buffer overflow in the count_vcards function in LibVC 3, as used in Rolo, allows user-assisted attackers to execute arbitrary code via a vCard file (e.g. contacts.vcf) containing a long line.

Affected products

• andrew_hsu / libvc3 – 3
• andrew_hsu / rolo11 – 11

References

• MISChttp://osvdb.org/ref/23/23985-libvc.txt
• MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/25430
• MISChttp://www.osvdb.org/23985
• VENDOR_ADVISORYhttp://secunia.com/advisories/19295
• MISChttp://www.securityfocus.com/bid/17237