Computer Security
[EN] securityvulns.ru no-pyccku


FreeSWITCH buffer overflow
Published:12.10.2015
Source:
SecurityVulns ID:14727
Type:library
Threat Level:
6/10
Description:Buffer overflow on JSON parsing.
Affected:FREESWITCH : freeswitch 1.6
CVE:CVE-2015-7392 (Heap-based buffer overflow in the parse_string function in libs/esl/src/esl_json.c in FreeSWITCH before 1.4.23 and 1.6.x before 1.6.2 allows remote attackers to execute arbitrary code via a trailing \u in a json string to cJSON_Parse.)
Original documentdocumentMarcello Duarte, CVE-2015-7392 Heap overflow in Freeswitch json parser < 1.6.2 & < 1.4.23 (12.10.2015)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod