RSS   Vulnerabilities for 'Fenice'   RSS

2006-04-25
 
CVE-2006-2023

CWE-Other
 

 
Integer overflow in the RTSP_msg_len function in rtsp/RTSP_msg_len.c in Fenice 1.10 and earlier allows remote attackers to cause a denial of service (application crash) via a large HTTP Content-Length value, which leads to an invalid memory access.

 
 
CVE-2006-2022

CWE-Other
 

 
Buffer overflow in the parse_url function in the RTSP module (rtsp/parse_url.c) in Fenice 1.10 and earlier allows remote attackers to execute arbitrary code via a long URL.

 


Copyright 2024, cxsecurity.com

 

Back to Top