|
|
CVE Reference: CVE-2007-6626 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2007-6626 |
|
|
Description: Multiple buffer overflows in the RTSP_valid_response_msg function in RTSP_state_machine.c in LScube Feng 0.1.15 and earlier allow remote attackers to execute arbitrary code via (1) a long first line of a response, as demonstrated by a long VER line; or (2) a long second line of a response, as demonstrated by a message that follows a RETURN line. |
|
|
CVE Status: Candidate |
|
|
References: SREASON http://securityreason.com/securityalert/3507 SAID Secunia Advisory: SA28229 OSVDB 40532 MISC http://aluigi.org/poc/fengulo.zip http://aluigi.altervista.org/adv/fengulo-adv.txt BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/485574/100/0/threaded BID 27049 |
|
| Return to the previous page. |
