Free-SA Multiple Buffer Overflow Vulnerabilities

Bugtraq ID:	23924
Class:	Boundary Condition Error
CVE:	CVE-2007-2652
Remote:	Yes
Local:	No
Published:	May 11 2007 12:00AM
Updated:	May 07 2015 05:39PM
Credit:	The vendor disclosed these issues.
Vulnerable:	Free-SA Free-SA 1.2.1
Not Vulnerable:	Free-SA Free-SA 1.2.2

Free-SA Multiple Buffer Overflow Vulnerabilities

Free-SA is prone to multiple buffer-overflow vulnerabilities because the application fails to bounds-check user-supplied data before copying it into an insufficiently sized buffer.

An attacker can exploit these issues to execute arbitrary code within the context of the affected application or cause a denial-of-service condition.

These issues affect Free-SA 1.2.1 and prior versions.

Free-SA Multiple Buffer Overflow Vulnerabilities

Currently we are not aware of any exploits for these issues. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

Free-SA Multiple Buffer Overflow Vulnerabilities

Solution:
The vendor released an update to address these issues. Please see the references for more information.

Free-SA Multiple Buffer Overflow Vulnerabilities

References:

• Free-SA 1.2.2 Release Notes (Free-SA)
  
• Free-SA Homepage (Free-SA )