NVD

Id
58621  
Name
CVE-2007-6626  
Description
Multiple buffer overflows in the RTSP_valid_response_msg function in RTSP_state_machine.c in LScube Feng 0.1.15 and earlier allow remote attackers to execute arbitrary code via (1) a long first line of a response, as demonstrated by a long VER line; or (2) a long second line of a response, as demonstrated by a message that follows a RETURN line.  
Reject
 
CVSS Version
2  
CVSS Score
7.5  
Severity
High  
CVSS Base Score
7.5  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:P/I:P/A:P)  
Pub Date
2017-01-07  
Published
2008-01-03  
Modified Date
2011-03-07  
Seq
2007-6626  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
300765 58621 CVE-2007-6626 http://aluigi.altervista.org/adv/fengulo-adv.txt  View
300766 58621 CVE-2007-6626 http://aluigi.org/poc/fengulo.zip  View
300767 58621 CVE-2007-6626 3507  View
300768 58621 CVE-2007-6626 20071227 Multiple vulnerabilities in Feng 0.1.15  View
300769 58621 CVE-2007-6626 27049  View
300770 58621 CVE-2007-6626 ADV-2008-0011  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
47234 JVNDB-2008-002544 LScube Feng の RTSP_valid_response_msg 関数におけるバッファオーバーフローの脆弱性 LScube Feng の RTSP_state_machine.c の RTSP_valid_response_msg 関数には、バッファオーバーフローの脆弱性が存在します。 CVE-2007-6626 29981 CVE-2007-6626 58621 7.5 http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-002544.html 2008-01-03 2012-06-26 View