FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

peercast -- arbitrary code execution

Affected packages
0 < peercast

Details

VuXML ID 402ae710-26a2-11dd-ae05-825f4c35000a
Discovery 2008-05-20
Entry 2008-05-21

Nico Golde discovered that PeerCast, a P2P audio and video streaming server, is vulnerable to a buffer overflow in the HTTP Basic Authentication code, allowing a remote attacker to crash PeerCast or execure arbitrary code.

References

Bugtraq ID 28986
CVE Name CVE-2008-2040
URL http://secunia.com/advisories/30020