cbcvebase.
CVE-2007-6626
published 2008-01-04

CVE-2007-6626: Multiple buffer overflows in the RTSP_valid_response_msg function in RTSP_state_machine.c in LScube Feng 0.1.15 and earlier allow remote attackers to execute…

PriorityP338high7.5CVSS 2.0
AVNACLAuNCPIPAP
EPSS
4.15%
89.6th percentile
Multiple buffer overflows in the RTSP_valid_response_msg function in RTSP_state_machine.c in LScube Feng 0.1.15 and earlier allow remote attackers to execute arbitrary code via (1) a long first line of a response, as demonstrated by a long VER line; or (2) a long second line of a response, as demonstrated by a message that follows a RETURN line.

Affected

1 ranges
VendorProductVersion rangeFixed in
fengfeng<= 0.1.15
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.