Lucene search

PRIOn knowledge basePRION:CVE-2007-1545

HistoryMar 20, 2007 - 10:19 p.m.

Code injection

2007-03-2022:19:00

PRIOn knowledge base

www.prio-n.com

6.5 Medium

AI Score

Confidence

High

0.156 Low

EPSS

Percentile

96.0%

JSON

The AddResource function in server/dia/resource.c in Network Audio System (NAS) before 1.8a SVN 237 allows remote attackers to cause a denial of service (server crash) via a nonexistent client ID.

CPENameOperatorVersion
network_audio_systemeq1.8.97

CPE	Name	Operator	Version
	network_audio_system	eq	1.8.97

References

aluigi.altervista.org/adv/nasbugs-adv.txt

secunia.com/advisories/24527

secunia.com/advisories/24601

secunia.com/advisories/24628

secunia.com/advisories/24638

secunia.com/advisories/24980

security.gentoo.org/glsa/glsa-200704-20.xml

www.debian.org/security/2007/dsa-1273

www.mandriva.com/security/advisories?name=MDKSA-2007:065

www.radscan.com/nas/HISTORY

www.securityfocus.com/archive/1/464606/30/7230/threaded

www.securityfocus.com/bid/23017

www.securitytracker.com/id?1017822

www.ubuntu.com/usn/usn-446-1

www.vupen.com/english/advisories/2007/0997

exchange.xforce.ibmcloud.com/vulnerabilities/33050