Firefly Media Server Webserver.C Multiple Format String Vulnerabilities
BID:26310
Info
Firefly Media Server Webserver.C Multiple Format String Vulnerabilities
| Bugtraq ID: | 26310 |
| Class: | Input Validation Error |
| CVE: |
CVE-2007-5825 |
| Remote: | Yes |
| Local: | No |
| Published: | Nov 02 2007 12:00AM |
| Updated: | Sep 02 2008 04:34PM |
| Credit: | nnp is credited with discovering these issues. |
| Vulnerable: |
Gentoo Linux Fireflymediaserver Firefly Media Server 0.2.4 Debian Linux 4.0 sparc Debian Linux 4.0 s/390 Debian Linux 4.0 powerpc Debian Linux 4.0 mipsel Debian Linux 4.0 mips Debian Linux 4.0 m68k Debian Linux 4.0 ia-64 Debian Linux 4.0 ia-32 Debian Linux 4.0 hppa Debian Linux 4.0 arm Debian Linux 4.0 amd64 Debian Linux 4.0 alpha Debian Linux 4.0 |
| Not Vulnerable: |
Fireflymediaserver Firefly Media Server 0.2.4 1 |
Discussion
Firefly Media Server Webserver.C Multiple Format String Vulnerabilities
Firefly Media Server (formerly known as mt-daapd) is affected by multiple format-string vulnerabilities because the application fails to adequately sanitize user-supplied input before passing it as the format-specifier to a formatted-printing function.
Exploiting these issues can allow remote attackers to execute arbitrary code in the context of the application.
Versions prior to Firefly Media Server 0.2.4.1 are affected.
Firefly Media Server (formerly known as mt-daapd) is affected by multiple format-string vulnerabilities because the application fails to adequately sanitize user-supplied input before passing it as the format-specifier to a formatted-printing function.
Exploiting these issues can allow remote attackers to execute arbitrary code in the context of the application.
Versions prior to Firefly Media Server 0.2.4.1 are affected.
Exploit / POC
Firefly Media Server Webserver.C Multiple Format String Vulnerabilities
The following exploit code is available:
The following exploit code is available:
Solution / Fix
Firefly Media Server Webserver.C Multiple Format String Vulnerabilities
Solution:
The vendor has released an update to address these issues; please see the references for more information.
Fireflymediaserver Firefly Media Server 0.2.4
Solution:
The vendor has released an update to address these issues; please see the references for more information.
Fireflymediaserver Firefly Media Server 0.2.4
-
Firefly Media Server mt-daapd-0.2.4.1.tar.gz
http://downloads.sourceforge.net/mt-daapd/mt-daapd-0.2.4.1.tar.gz?modt ime=1193005674&big_mirror=0
References
Firefly Media Server Webserver.C Multiple Format String Vulnerabilities
References:
References:
- Firefly Media Server 0.2.4.1 Changelog (Firefly Media Server)
- Firefly Media Server Homepage (Firefly Media Server)
- [UPH-07-03] Firefly Media Server remote format string vulnerability (nnp
)