|
Family: Gain a shell remotely --> Category: mixed
PeerCast Buffer Overflow Vulnerability Vulnerability Scan
Vulnerability Scan Summary Tries to crash PeerCast web server
Detailed Explanation for this Vulnerability Test
Synopsis :
The remote web server suffers from a buffer overflow vulnerability.
Description :
The version of PeerCast installed on the remote host copies the
supplied option string without limit into a finite-size buffer. An
unauthenticated attacker can leverage this issue to crash the affected
application and possibly to execute arbitrary code on the remote host
subject to the rights of the user running PeerCast.
See also :
http://www.securityfocus.com/archive/1/427160/30/0/threaded
http://www.peercast.org/forum/viewtopic.php?t=3346
Solution :
Upgrade to PeerCast version 0.1217 or later.
Threat Level:
High / CVSS Base Score : 7
(AV:R/AC:L/Au:NR/C:P/A:P/I:P/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|