CVE-2008-0550 Information

Description

Off-by-one error in Steamcast 0.9.75 and earlier allows remote attackers to cause a denial of service (daemon crash) or execute arbitrary code via a certain HTTP request that leads to a buffer overflow as demonstrated by a long User-Agent header.

Reference

http://aluigi.altervista.org/adv/steamcazz-adv.txt http://aluigi.org/poc/steamcazz.zip https://exchange.xforce.ibmcloud.com/vulnerabilities/39928