4 matches found
Code injection
Dibbler 0.6.0 does not verify that certain length parameters are appropriate for buffer sizes, which allows remote attackers to trigger a buffer over-read and cause a denial of service daemon crash, as demonstrated by incorrect behavior of the TSrvMsg constructor in SrvMessages/SrvMsg.cpp when 1...
CVE-2007-5029
Dibbler 0.6.0 does not verify that certain length parameters are appropriate for buffer sizes, which allows remote attackers to trigger a buffer over-read and cause a denial of service daemon crash, as demonstrated by incorrect behavior of the TSrvMsg constructor in SrvMessages/SrvMsg.cpp when 1...
Integer overflow
Multiple integer overflows in Dibbler 0.6.0 allow remote attackers to cause a denial of service daemon crash via packets containing options with large lengths, which trigger attempts at excessive memory allocation, as demonstrated by 1 the TSrvMsg constructor in SrvMessages/SrvMsg.cpp; the 2...
CVE-2007-5029
Dibbler 0.6.0 does not verify that certain length parameters are appropriate for buffer sizes, which allows remote attackers to trigger a buffer over-read and cause a denial of service daemon crash, as demonstrated by incorrect behavior of the TSrvMsg constructor in SrvMessages/SrvMsg.cpp when 1...