Computer Security
[EN] securityvulns.ru no-pyccku


Streamripper multiple buffer overflows
Published:21.11.2008
Source:
SecurityVulns ID:9446
Type:client
Threat Level:
5/10
Description:Buffer overflows on HTTP response headers parsing, .m3u and .pls playlists parsing.
Affected:STREAMRIPPER : Streamripper 1.63
CVE:CVE-2008-4829 (Multiple buffer overflows in lib/http.c in Streamripper 1.63.5 allow remote attackers to execute arbitrary code via (1) a long "Zwitterion v" HTTP header, related to the http_parse_sc_header function; (2) a crafted pls playlist with a long entry, related to the http_get_pls function; or (3) a crafted m3u playlist with a long File entry, related to the http_get_m3u function.)
Original documentdocumentSECUNIA, Secunia Research: Streamripper Multiple Buffer Overflows (21.11.2008)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod