CVE-2008-7160

2009-09-10T17:30:01
ID CVE-2008-7160
Type cve
Reporter NVD
Modified 2012-10-22T23:01:25

Description

The silc_http_server_parse function in lib/silchttp/silchttpserver.c in the internal HTTP server in silcd in Secure Internet Live Conferencing (SILC) Toolkit before 1.1.9 allows remote attackers to overwrite a stack location and possibly execute arbitrary code via a crafted Content-Length header, related to incorrect use of a %lu format string.