CVE-2007-1397 Information

Description

Multiple stack-based buffer overflows in the (1) ExtractRnick and (2) decrypt_topic_332 functions in FiSH allow remote attackers to execute arbitrary code via long strings.

Reference

http://blogs.23.nu/ilja/stories/14493/ http://secunia.com/advisories/24495 http://securityreason.com/securityalert/8216 http://www.securityfocus.com/bid/22880 http://www.vupen.com/english/advisories/2007/0910 https://exchange.xforce.ibmcloud.com/vulnerabilities/32892