cbcvebase.
CVE-2006-3124
published 2006-08-26

CVE-2006-3124: Buffer overflow in the HTTP header parsing in Streamripper before 1.61.26 allows remote attackers to cause a denial of service and possibly execute arbitrary…

PriorityP349high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
18.68%
96.9th percentile
Buffer overflow in the HTTP header parsing in Streamripper before 1.61.26 allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted HTTP headers.

Affected

16 ranges
VendorProductVersion rangeFixed in
debianstreamripper< streamripper 1.61.25-2 (bookworm)streamripper 1.61.25-2 (bookworm)
debianstreamripper< streamripper 1.62.2-1 (bookworm)streamripper 1.62.2-1 (bookworm)
streamripperstreamripper
streamripperstreamripper
streamripperstreamripper
streamripperstreamripper
streamripperstreamripper
streamripperstreamripper
streamripperstreamripper>= 0 < 1.62.2-11.62.2-1
streamripperstreamripper>= 0 < 1.61.25-21.61.25-2
streamripperstreamripper>= 0 < 1.62.2-11.62.2-1
streamripperstreamripper>= 0 < 1.61.25-21.61.25-2
streamripperstreamripper>= 0 < 1.62.2-11.62.2-1
streamripperstreamripper>= 0 < 1.61.25-21.61.25-2
streamripperstreamripper>= 0 < 1.62.2-11.62.2-1
streamripperstreamripper>= 0 < 1.61.25-21.61.25-2

CVSS provenance

nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
osv7.5HIGH
vendor_debian7.5LOW
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.