CVE-2007-1344 Information
Description
Multiple buffer overflows in src/ezstream.c in Ezstream before 0.3.0 allow remote attackers to execute arbitrary code via a crafted XML configuration file processed by the (1) urlParse function which causes a stack-based overflow and the (2) ReplaceString function which causes a heap-based overflow. NOTE: some of these details are obtained from third party information.
Reference
http://osvdb.org/33869 http://secunia.com/advisories/24383 http://www.icecast.org/ezstream.phpez_relnotes http://www.securityfocus.com/bid/22840 http://www.vupen.com/english/advisories/2007/0852 https://exchange.xforce.ibmcloud.com/vulnerabilities/32867 ezstream-replacestring-urlparse-bo(32867) Multiple buffer overflows in src/ezstream.c in Ezstream before 0.3.0 allow remote attackers to execute arbitrary code via a crafted XML configuration file processed by the (1) urlParse function which causes a stack-based overflow and the (2) ReplaceString function which causes a heap-based overflow. NOTE: some of these details are obtained from third party information.
Share on: