CVE-2008-4829 in Streamripperinfo

Summary

Multiple buffer overflows in lib/http.c in Streamripper 1.63.5 allow remote attackers to execute arbitrary code via (1) a long "Zwitterion v" HTTP header, related to the http_parse_sc_header function; (2) a crafted pls playlist with a long entry, related to the http_get_pls function; or (3) a crafted m3u playlist with a long File entry, related to the http_get_m3u function.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Reservation

10/31/2008

Disclosure

11/25/2008

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-119

CVSS

10.0

EPSS

0.07684

CTI

0.00

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2008-4829
NVD	https://nvd.nist.gov/vuln/detail/CVE-2008-4829
CVE Details	https://www.cvedetails.com/cve/CVE-2008-4829/

◂ Previous Overview Next ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!