CVE: CVE-2008-2040

Descrizione: Stack-based buffer overflow in the HTTP::getAuthUserPass function (core/common/http.cpp) in Peercast 0.1218 and gnome-peercast allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a Basic Authentication string with a long (1) username or (2) password.

Vettore di attacco

Riferimenti esterni

• http://security.gentoo.org/glsa/glsa-200807-11.xml
• http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=478680
• http://secunia.com/advisories/30020
• http://www.debian.org/security/2008/dsa-1583
• http://secunia.com/advisories/30325
• http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=478573
• http://secunia.com/advisories/29962
• https://exchange.xforce.ibmcloud.com/vulnerabilities/42092
• http://www.debian.org/security/2008/dsa-1582
• http://www.vupen.com/english/advisories/2008/1410/references
• http://secunia.com/advisories/30320
• http://secunia.com/advisories/31182
• http://www.vupen.com/english/advisories/2008/1409/references
• http://www.securityfocus.com/bid/28986

Prodotti interessati

• n/a – n/a

Relazioni con altri prodotti

Nessun prodotto trovato per il CVE: cve-2008-2040

Ulteriori risorse disponibili

• Vulnerabilità scoperte nello stesso anno (2008)