|
|
CVE Reference: CVE-2008-4829 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2008-4829 |
|
|
Description: Multiple buffer overflows in lib/http.c in Streamripper 1.63.5 allow remote attackers to execute arbitrary code via (1) a long "Zwitterion v" HTTP header, related to the http_parse_sc_header function; (2) a crafted pls playlist with a long entry, related to the http_get_pls function; or (3) a crafted m3u playlist with a long File entry, related to the http_get_m3u function. |
|
|
CVE Status: Candidate |
|
|
References: SREASON http://securityreason.com/securityalert/4647 SAID Secunia Advisory: SA33061 Secunia Advisory: SA32562 Secunia Advisory: SA33052 OSVDB 49997 MISC http://secunia.com/secunia_research/2008-50/ DEBIAN http://www.debian.org/security/2008/dsa-1683 BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/498486/100/0/threaded BID 32356 |
|
| Return to the previous page. |
