CVE-2007-4337
EPSS 3.4%streamripper - potential code execution
發布日:2007/8/14修改日:2026/4/28
也稱為:DEBIAN-CVE-2007-4337
描述
Multiple buffer overflows in the httplib_parse_sc_header function in lib/http.c in Streamripper before 1.62.2 allow remote attackers to execute arbitrary code via long (1) Location and (2) Server HTTP headers, a different vulnerability than CVE-2006-3124.
受影響套件(2)
- Debian/streamripperfrom 0, < 1.62.2-1
- Debian/streamripperfrom 0, < 1.61.27-1+etch1