CVE-2007-6626

CVE-2007-6626 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Multiple buffer overflows in the RTSP_valid_response_msg function in RTSP_state_machine.c in LScube Feng 0.1.15 and earlier allow remote attackers to execute arbitrary code via (1) a long first line of a response, as demonstrated by a long VER line; or (2) a long second line of a response, as demonstrated by a message that follows a RETURN line.

Learn more about our Web Application Penetration Testing UK.