2 matches found
Fedora 7 : vavoom-1.24-3.fc7 (2007-1977)
Security update fixing various format strings vulnerabilities and a DOS vulnerability in the vavoom server, this fixes: CVE-2007-4533, CVE-2007-4534 & CVE-2007-4535. Also see bugzilla bug 256621. Note that Tenable Network Security has extracted the preceding description block directly from the...
CVE-2007-4533
The CVE-2007-4533 issue affects Vavoom 1.24 and earlier, specifically the Say command in sv_main.cpp. A format string vulnerability could allow remote attackers to execute arbitrary code via format string specifiers in a chat message, tied to a call to BroadcastPrintf. This vulnerability is confi...