Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-6454

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2007-6454
Last Modified 07 Mar 2011 10:02:44
Published 19 Dec 2007 07:46:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-6454

Summary

Heap-based buffer overflow in the handshakeHTTP function in servhs.cpp in PeerCast 0.1217 and earlier, and SVN 344 and earlier, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long SOURCE request.

Vulnerable Systems

Application

  • Peercast 0.1211

  • Peercast 0.1212

  • Peercast 0.1215

  • Peercast 0.1217

  • Peercast Svn 344


References

BID - 26899

XF - peercast-handshakehttp-bo(39075)

VUPEN - ADV-2007-4246

BUGTRAQ - 20071217 Heap overflow in PeerCast 0.1217

DEBIAN - DSA-1441

SECUNIA - 28260

SECUNIA - 28120

MISC - http://bugs.gentoo.org/show_bug.cgi?id=202747

MISC - http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=457300

MISC - http://aluigi.altervista.org/adv/peercasthof-adv.txt

GENTOO - GLSA-200801-22

DEBIAN - DSA-1583

SREASON - 3461

SECUNIA - 30325

SECUNIA - 28719


Last Updated: 27 May 2016 10:46:30