peercast -- buffer overflow vulnerability

ID 31435FBC-AE73-11DC-A5F9-001A4D49522B
Type freebsd
Reporter FreeBSD
Modified 2010-05-12T00:00:00


Luigi Auriemma reports that peercast is vulnerable to a buffer overflow which could lead to a DoS or potentially remote code execution:

The handshakeHTTP function which handles all the requests received by the other clients is vulnerable to a heap overflow which allows an attacker to fill the loginPassword and loginMount buffers located in the Servent class with how much data he wants.