CVE-2014-2892

CVE-2014-2892 affects libmms: heap-based buffer overflow in get_answer (mmsh.c) handling MMS over HTTP, before version 0.6.4. A remote attacker could deliver a crafted MMSH response to cause arbitrary code execution with the process’s privileges. Public advisories consistently cite upgrade to lib...