11 matches found
Fedora Update for mt-daapd FEDORA-2008-4126
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for mt-daapd FEDORA-2008-3250
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
[SECURITY] [DSA-1597-2] New mt-daapd package fix regression
------------------------------------------------------------------------ Debian Security Advisory DSA-1597-2 [email protected] http://www.debian.org/security/ Devin Carraway August 30, 2008 http://www.debian.org/security/faq -...
[SECURITY] [DSA-1597-2] New mt-daapd package fix regression
------------------------------------------------------------------------ Debian Security Advisory DSA-1597-2 [email protected] http://www.debian.org/security/ Devin Carraway August 30, 2008 http://www.debian.org/security/faq -...
Debian Security Advisory DSA 1597-1 (mt-daapd)
The remote host is missing an update to mt-daapd announced via advisory DSA 1597-1. OpenVAS Vulnerability Test $Id: deb15971.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1597-1 mt-daapd Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
[SECURITY] [DSA 1597-1] New mt-daapd packages fix several vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1597-1 [email protected] http://www.debian.org/security/ Devin Carraway June 12, 2008 http://www.debian.org/security/faq -...
[SECURITY] [DSA 1597-1] New mt-daapd packages fix several vulnerabilities
------------------------------------------------------------------------ Debian Security Advisory DSA-1597-1 [email protected] http://www.debian.org/security/ Devin Carraway June 12, 2008 http://www.debian.org/security/faq -...
FreeBSD : mt-daapd -- integer overflow (86a4d810-1884-11dd-a914-0016179b2dd5)
FrSIRT reports : A vulnerability has been identified in mt-daapd which could be exploited by remote attackers to cause a denial of service or compromise an affected system. This issue is caused by a buffer overflow error in the wsgetpostvars function when processing a negative Content-Length :...
Firefly媒体服务器畸形Content-Length字段堆溢出漏洞
BUGTRAQ ID: 28860 CVECAN ID: CVE-2008-1771 Firefly是Roku SoundBridge和iTunes所使用的开源媒体服务器。 Firefly的src/webserver.c文件的wsgetpostvars函数中存在堆溢出漏洞,如果远程攻击者向服务区发送了带有负数Content-Length值的POST请求的话就可以触发这个溢出,导致拒绝服务或执行任意指令。 以下是src/webserver.c文件中的漏洞代码: 707 int wsgetpostvarsWSCONNINFO pwsc 708 char contentlength; 709...
CVE-2008-1771
Integer overflow in the wsgetpostvars function in Firefly Media Server formerly mt-daapd 0.2.4.1 0.9r1696-1.2 on Debian allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via an HTTP POST request with a large Content-Length...
CVE-2008-1771
CVE-2008-1771 describes an integer overflow in ws_getpostvars in mt-daapd (Firefly Media Server) v0.2.4.1 and related builds, triggered by a large HTTP POST Content-Length. This can cause a heap buffer overflow with potential remote code execution, alongside denial of service. Connected advisorie...