CVE-2006-6288

EPSS 8.31% · P92 Updated Feb 27, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2006-6288

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Multiple buffer overflows in Niek Albers CoolPlayer 216 and earlier allow remote attackers to execute arbitrary code via (1) a playlist file with long song names, because of an overflow in the CPL_AddPrefixedFile function in CPI_Playlist.c; (2) a skin file with long button names, because of an overflow in the main_skin_check_ini_value function in skin.c; and (3) a skin file with long bitmap filenames, because of an overflow in the main_skin_open function in skin.c.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

CoolPlayer多个缓冲区溢出漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

CoolPlayer是一款开放源码的音频播放器。 CoolPlayer在处理数据时缺少正确的缓冲区长度检查，如果用户受骗加载了恶意的音频文件的话，就可能触发CoolPlayer中存在的多个溢出漏洞，导致拒绝服务或执行任意指令。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2006-6288

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2006-6288

请登录查看更多情报信息。

http://sourceforge.net/project/shownotes.php?group_id=31900&release_id=467783x_refsource_CONFIRM
http://coolplayer.cvs.sourceforge.net/coolplayer/Main/stdafx.h?view=logx_refsource_CONFIRM
https://www.exploit-db.com/exploits/4839exploitx_refsource_EXPLOIT-DB
http://www.securityfocus.com/bid/21396vdb-entryx_refsource_BID
http://secunia.com/advisories/23360third-party-advisoryx_refsource_SECUNIA
http://www.vupen.com/english/advisories/2006/4806vdb-entryx_refsource_VUPEN
https://exchange.xforce.ibmcloud.com/vulnerabilities/30658vdb-entryx_refsource_XF
https://exchange.xforce.ibmcloud.com/vulnerabilities/30863vdb-entryx_refsource_XF
https://exchange.xforce.ibmcloud.com/vulnerabilities/30861vdb-entryx_refsource_XF
http://www.securityfocus.com/archive/1/485547/100/100/threadedmailing-listx_refsource_BUGTRAQ
http://www.securityfocus.com/archive/1/485564/100/100/threadedmailing-listx_refsource_BUGTRAQ
http://www.securityfocus.com/archive/1/485578/100/100/threadedmailing-listx_refsource_BUGTRAQ
http://lists.grok.org.uk/pipermail/full-disclosure/2006-December/051269.htmlmailing-listx_refsource_FULLDISC
https://nvd.nist.gov/vuln/detail/CVE-2006-6288

Same Patch Batch · n/a · 2006-12-04 · 47 CVEs total

CVE-2006-6275		Sun Solaris内核本地拒绝服务漏洞
CVE-2006-6278		@lex Guestbook 'Index.PHP' 多个输入验证漏洞
CVE-2006-6280		Oxygen O2PHP Bulletin Board 'ViewThread.PHP' SQL注入漏洞
CVE-2006-6283		Vikingboard 多个跨站脚本攻击漏洞
CVE-2006-6284		Vikingboard 'Admin.PHP'目录遍历漏洞
CVE-2006-6285		Retired - Kai Blankenhorn Bitfolge simple和nice index文件'Index.PHP'远程文件包含漏洞
CVE-2006-6286		Palm Desktop Application Directory本地不安全许可漏洞
CVE-2006-6287		AtomixMP3 M3U/PLS播放列表解析缓冲区溢出漏洞
CVE-2006-6282		Vikingboard 'Admin.PHP'目录遍历漏洞
CVE-2006-6276		Sun Java系统服务器嵌入式HTTP请求处理漏洞
CVE-2006-6277		ContentServ 'FileServer.php' 目录遍历漏洞
CVE-2006-6274		Expinion.net iNews Publisher ‘Articles.ASP’SQL注入漏洞
CVE-2006-6273		Simple PHP Gallery System 'SP_Index.PHP'跨站脚本攻击漏洞
CVE-2006-6272		Simple PHP Gallery System 'SP_Index.PHP'跨站脚本攻击漏洞
CVE-2006-6271		PHPOLL 多个跨站脚本攻击(XSS)漏洞
CVE-2006-6270		ASPMForum　多个SQL注入漏洞
CVE-2006-6269		Infinitytechs Restaurants CM　多个SQL注入漏洞
CVE-2006-6268		Neocrome Land Down Under 'Profile.Inc.PHP' SQL注入漏洞
CVE-2006-6267		PostNuke stop参数敏感信息泄露漏洞
CVE-2006-6266		Teredo客户端 IPv6连接测试安全访问漏洞

Showing top 20 of 47 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2006-6288

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2006-6288

I. Basic Information for CVE-2006-6288

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2006-6288

III. Intelligence Information for CVE-2006-6288

Same Patch Batch · n/a · 2006-12-04 · 47 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2006-6288

Leave a comment