CVE-2007-4337

Multiple buffer overflows in the httplib_parse_sc_header function in lib/http.c in Streamripper before 1.62.2 allow remote attackers to execute arbitrary code via long (1) Location and (2) Server HTTP headers, a different vulnerability than CVE-2006-3124.

CVSS v2.0 5.8 MEDIUM

5.8^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:M/Au:N/C:P/I:P/A:N

Exploitability : 8.6 / Impact : 4.9

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact NONE

References

Link	Resource
http://osvdb.org/39533
http://secunia.com/advisories/26406	Vendor Advisory
http://secunia.com/advisories/26814
http://secunia.com/advisories/33052
http://secunia.com/advisories/33061
http://security.gentoo.org/glsa/glsa-200709-03.xml
http://sourceforge.net/project/shownotes.php?group_id=6172&release_id=531738	Patch
http://streamripper.cvs.sourceforge.net/streamripper/sripper_1x/lib/http.c?r1=1.38&r2=1.39
http://www.debian.org/security/2008/dsa-1683
http://www.securityfocus.com/archive/1/476302/100/0/threaded
http://www.securityfocus.com/bid/25278
http://www.securitytracker.com/id?1018553
http://www.vupen.com/english/advisories/2007/2858

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:streamripper:streamripper:1.61.1:::::::*
	cpe:2.3:a:streamripper:streamripper:1.61.17:::::::*
	cpe:2.3:a:streamripper:streamripper:1.61.24:::::::*
	cpe:2.3:a:streamripper:streamripper:1.61.25:::::::*
	cpe:2.3:a:streamripper:streamripper:1.61.26:::::::*
	cpe:2.3:a:streamripper:streamripper:1.62:::::::*

History

No history.

Information

Published : 2007-08-14 18:17

Updated : 2024-02-28 11:01

NVD link : CVE-2007-4337

Mitre link : CVE-2007-4337

CVE.ORG link : CVE-2007-4337

JSON object : View

Products Affected

streamripper

streamripper

CWE

CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

{"id": "CVE-2007-4337", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 4.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2007-08-14T18:17:00.000", "references": [{"url": "http://osvdb.org/39533", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/26406", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/26814", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/33052", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/33061", "source": "cve@mitre.org"}, {"url": "http://security.gentoo.org/glsa/glsa-200709-03.xml", "source": "cve@mitre.org"}, {"url": "http://sourceforge.net/project/shownotes.php?group_id=6172&release_id=531738", "tags": ["Patch"], "source": "cve@mitre.org"}, {"url": "http://streamripper.cvs.sourceforge.net/streamripper/sripper_1x/lib/http.c?r1=1.38&r2=1.39", "source": "cve@mitre.org"}, {"url": "http://www.debian.org/security/2008/dsa-1683", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/archive/1/476302/100/0/threaded", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/25278", "source": "cve@mitre.org"}, {"url": "http://www.securitytracker.com/id?1018553", "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2007/2858", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-119"}]}], "descriptions": [{"lang": "en", "value": "Multiple buffer overflows in the httplib_parse_sc_header function in lib/http.c in Streamripper before 1.62.2 allow remote attackers to execute arbitrary code via long (1) Location and (2) Server HTTP headers, a different vulnerability than CVE-2006-3124."}, {"lang": "es", "value": "M\u00faltiples desbordamientos de b\u00fafer en la funci\u00f3n httplib_parse_sc_header en la biblioteca lib/http.c en Streamripper versiones anteriores a 1.62.2, permiten a atacantes remotos ejecutar c\u00f3digo arbitrario por medio de encabezados (1) Location y (2) Server HTTP largos, una vulnerabilidad diferente de CVE-2006-3124."}], "lastModified": "2018-10-15T21:34:39.963", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:streamripper:streamripper:1.61.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "66EC7BAB-C449-47FE-AD55-55945B46822D"}, {"criteria": "cpe:2.3:a:streamripper:streamripper:1.61.17:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "68996653-3A26-4D27-B8BE-A05FA82BB764"}, {"criteria": "cpe:2.3:a:streamripper:streamripper:1.61.24:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "201368B3-C82A-4CF8-AADC-24F4E67C4CE1"}, {"criteria": "cpe:2.3:a:streamripper:streamripper:1.61.25:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E62AF206-3E5C-49F4-9013-A70B82664189"}, {"criteria": "cpe:2.3:a:streamripper:streamripper:1.61.26:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DC19DC46-AE70-4D2A-A1ED-A946B44D0665"}, {"criteria": "cpe:2.3:a:streamripper:streamripper:1.62:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C73FA158-7E9A-4A6F-9E63-97D0126A2C57"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}