Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-2040

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-2040
Last Modified 07 Mar 2011 10:08:36
Published 30 Apr 2008 12:17:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-2040

Summary

Stack-based buffer overflow in the HTTP::getAuthUserPass function (core/common/http.cpp) in Peercast 0.1218 and gnome-peercast allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a Basic Authentication string with a long (1) username or (2) password.

Vulnerable Systems

Application

  • Peercast 0.1218


References

VUPEN - ADV-2008-1410

VUPEN - ADV-2008-1409

GENTOO - GLSA-200807-11

SECUNIA - 31182

CONFIRM - http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=478680

CONFIRM - http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=478573

XF - peercast-httpgetauthuserpass-bo(42092)

BID - 28986

DEBIAN - DSA-1583

DEBIAN - DSA-1582

SECUNIA - 30325

SECUNIA - 30320

SECUNIA - 30020

SECUNIA - 29962


Last Updated: 27 May 2016 10:47:44