Libnemesi 0.6.4-rc1 Multiple Remote Buffer Overflow Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/27048/info Libnemesi is prone to multiple buffer-overflow vulnerabilities because it fails to perform adequate boundary checks on user-supplied input. Attackers can exploit these issues to execute arbitrary code in the...

Buffer overflow

Multiple buffer overflows in LScube libnemesi 0.6.4-rc1 and earlier allow remote attackers to execute arbitrary code via 1 a reply that begins with a long version string, which triggers an overflow in handlertsppkt in rtsphandlers.c; long headers that trigger overflows in 2 sendpauserequest, 3...

CVE-2007-6631

Multiple buffer overflows in LScube libnemesi 0.6.4-rc1 and earlier allow remote attackers to execute arbitrary code via 1 a reply that begins with a long version string, which triggers an overflow in handlertsppkt in rtsphandlers.c; long headers that trigger overflows in 2 sendpauserequest, 3...

CVE-2007-6631

Multiple buffer overflows in LScube libnemesi 0.6.4-rc1 and earlier allow remote attackers to execute arbitrary code via 1 a reply that begins with a long version string, which triggers an overflow in handlertsppkt in rtsphandlers.c; long headers that trigger overflows in 2 sendpauserequest, 3...

CVE-2007-6631

CVE-2007-6631 describes multiple buffer overflows in the LScube libnemesi 0.6.4-rc1 and earlier. The vulnerability allows remote code execution via crafted RTSP traffic, including: a reply beginning with a long version string that overflows handle_rtsp_pkt in rtsp_handlers.c; excessively long hea...

Multiple vulnerabilities in libnemesi 0.6.4-rc1

Luigi Auriemma Application: libnemesi http://live.polito.it/documentation/libnemesi Versions: = 0.6.4-rc1 Platforms: nix Bugs: A buffer-overflow in handlertsppkt B buffer-overflow in the sendrequest functions C buffer-overflow in gettransportstr Exploitation: remote Date: 27 Dec 2007 Author: Luig...

Libnemesi缓冲区溢出漏洞

BUGTRAQ ID: 27048 CNCAN ID:CNCAN-2007122803 Libnemesi是一款实现RTSP/RTP流的开放源代码库。 Libnemesi存在多个缓冲区溢出问题，远程攻击者可以利用漏洞以应用程序进程权限执行任意指令。 问题一是handlertsppkt函数处理服务器应答存在缓冲区溢出。 问题二是sendrequest函数存在缓冲区溢出。 问题三是gettransportstr使用strncpy时存在缓冲区溢出。 Politecnico di Torino Libnemesi 0.6.4-rc1 厂商解决方案 ----------- 升级程序：...

Libnemesi 0.6.4-rc1 - Multiple Remote Buffer Overflow Vulnerabilities

source: https://www.securityfocus.com/bid/27048/info Libnemesi is prone to multiple buffer-overflow vulnerabilities because it fails to perform adequate boundary checks on user-supplied input. Attackers can exploit these issues to execute arbitrary code in the context of applications that use the...

Libnemesi 0.6.4-rc1 - Multiple Remote Buffer Overflow Vulnerabilities

Libnemesi 0.6.4-rc1 - Multiple Remote Buffer Overflow Vulnerabilities source: https://www.securityfocus.com/bid/27048/info Libnemesi is prone to multiple buffer-overflow vulnerabilities because it fails to perform adequate boundary checks on user-supplied input. Attackers can exploit these issues...