CVE-2006-2458
Multiple heap-based buffer overflows in Libextractor 0.5.13 and earlier allow remote attackers to execute arbitrary code via (1) the asf_read_header function in the ASF plugin (plugins/asfextractor.c), and (2) the parse_trak_atom function in the QT plugin (plugins/qtextractor.c).
Date published : 2006-05-18
http://www.securityfocus.com/bid/18021
http://www.securityfocus.com/archive/1/434288/100/0/threaded