CVE-2006-2023 - Secunia Advisories - Vulnerability Intelligence

CVE Reference: CVE-2006-2023
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2006-2023

Description: Integer overflow in the RTSP_msg_len function in rtsp/RTSP_msg_len.c in Fenice 1.10 and earlier allows remote attackers to cause a denial of service (application crash) via a large HTTP Content-Length value, which leads to an invalid memory access.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/26080 SREASON http://securityreason.com/securityalert/794 SAID Secunia Advisory: SA19770 OSVDB 24882 MISC http://aluigi.altervista.org/adv/fenicex-adv.txt BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/436256/100/0/threaded http://www.securityfocus.com/archive/1/archive/1/431870/100/0/threaded BID 17678

Return to the previous page.