BID:30399

reSIProcate Multiple Unspecified Memory Corruption Vulnerabilities

Info

reSIProcate Multiple Unspecified Memory Corruption Vulnerabilities

Bugtraq ID:	30399
Class:	Unknown
CVE:	CVE-2008-3199
Remote:	Yes
Local:	No
Published:	Jul 28 2008 12:00AM
Updated:	Jul 28 2008 08:47PM
Credit:	The vendor reported these issues.
Vulnerable:	ReSIProcate ReSIProcate 1.3.3 ReSIProcate ReSIProcate 1.3.2

Not Vulnerable:	ReSIProcate ReSIProcate 1.3.4

Discussion

reSIProcate Multiple Unspecified Memory Corruption Vulnerabilities

reSIProcate is prone to multiple unspecified memory-corruption vulnerabilities.

Attackers can exploit these issues to crash the affected application, denying service to legitimate users.

Versions prior to reSIProcate 1.3.4 are vulnerable.

Exploit / POC

reSIProcate Multiple Unspecified Memory Corruption Vulnerabilities

Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

Solution / Fix

reSIProcate Multiple Unspecified Memory Corruption Vulnerabilities

Solution:
The vendor has released an update. Please see the references for more information.

ReSIProcate ReSIProcate 1.3.2

ReSIProcate resiprocate-1.3.4
http://svn.resiprocate.org/rep/resiprocate/tags/resiprocate-1.3.4/

ReSIProcate ReSIProcate 1.3.3

ReSIProcate resiprocate-1.3.4
http://svn.resiprocate.org/rep/resiprocate/tags/resiprocate-1.3.4/

References

reSIProcate Multiple Unspecified Memory Corruption Vulnerabilities

References:

ReSIProcate 1.3.4 Released (ReSIProcate)
Vendor Homepage (ReSIProcate)