Buffer overflow in sethdlc.c in the Asterisk Zaptel 1.4.5.1 might allow local users to gain privileges via a long device name (interface name) in the ifr_name field. NOTE: the vendor disputes this issue, stating that the application requires root access, so privilege boundaries are not crossed
References
Configurations
History
07 Nov 2023, 02:01
Type | Values Removed | Values Added |
---|---|---|
Summary | Buffer overflow in sethdlc.c in the Asterisk Zaptel 1.4.5.1 might allow local users to gain privileges via a long device name (interface name) in the ifr_name field. NOTE: the vendor disputes this issue, stating that the application requires root access, so privilege boundaries are not crossed |
Information
Published : 2007-10-29 19:46
Updated : 2024-08-07 16:15
NVD link : CVE-2007-5690
Mitre link : CVE-2007-5690
CVE.ORG link : CVE-2007-5690
JSON object : View
Products Affected
asterisk
- zaptel
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer