10 matches found
Gentoo Security Advisory GLSA 200712-18 (mt-daapd)
The remote host is missing updates announced in advisory GLSA 200712-18. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 200712-18 (mt-daapd)
The remote host is missing updates announced in advisory GLSA 200712-18. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DSA-1597-2] New mt-daapd package fix regression
------------------------------------------------------------------------ Debian Security Advisory DSA-1597-2 [email protected] http://www.debian.org/security/ Devin Carraway August 30, 2008 http://www.debian.org/security/faq -...
[SECURITY] [DSA-1597-2] New mt-daapd package fix regression
------------------------------------------------------------------------ Debian Security Advisory DSA-1597-2 [email protected] http://www.debian.org/security/ Devin Carraway August 30, 2008 http://www.debian.org/security/faq -...
Debian Security Advisory DSA 1597-1 (mt-daapd)
The remote host is missing an update to mt-daapd announced via advisory DSA 1597-1. OpenVAS Vulnerability Test $Id: deb15971.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1597-1 mt-daapd Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
[SECURITY] [DSA 1597-1] New mt-daapd packages fix several vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1597-1 [email protected] http://www.debian.org/security/ Devin Carraway June 12, 2008 http://www.debian.org/security/faq -...
[SECURITY] [DSA 1597-1] New mt-daapd packages fix several vulnerabilities
------------------------------------------------------------------------ Debian Security Advisory DSA-1597-1 [email protected] http://www.debian.org/security/ Devin Carraway June 12, 2008 http://www.debian.org/security/faq -...
Multi-Threaded DAAP Daemon: Multiple vulnerabilities
Background Multi-Threaded DAAP Daemon mt-daapd, also known as the Firefly Media Server, is a software to serve digital music to the Roku Soundbridge and Apple's iTunes. Description nnp discovered multiple vulnerabilities in the XML-RPC handler in the file webserver.c. The wsaddarg function contai...
CVE-2007-5824
webserver.c in mt-dappd in Firefly Media Server 0.2.4 and earlier allows remote attackers to cause a denial of service NULL dereference and daemon crash via a stats method action to /xml-rpc with 1 an empty Authorization header line, which triggers a crash in the wsdecodepassword function; or 2 a...
CVE-2007-5824
CVE-2007-5824, CVE-2007-5825 and CVE-2008-1771 affect mt-daapd (Firefly Media Server) and its web/XML-RPC handling. The issues include: (1) insufficient validation and bounds checking of the Authorization HTTP header leading to a heap buffer overflow; (2) format string vulnerabilities in debug lo...