Multiple stack-based buffer overflows in the procConnectArgs function in servmgr.cpp in PeerCast prior to 0.1217 allow remote malicious users to execute arbitrary code via an HTTP GET request with a long (1) parameter name or (2) value in a URL, which triggers the overflow in the nextCGIarg function in servhs.cpp.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
peercast peercast |
||
peercast peercast 0.1211 |
||
peercast peercast 0.1212 |