PT-2005-4287 · Flatfrag · Flatfrag

Luigi Auriemma

Published

2005-11-04

Updated

2018-10-19

CVE-2005-3491

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions FlatFrag versions 0.3 and earlier

Description The issue is related to multiple buffer overflows in the receiver function in loop.c. Remote attackers can execute arbitrary code via the version, name, and model fields.

Recommendations For FlatFrag versions 0.3 and earlier, consider disabling the receiver function in loop.c until a patch is available. Restrict access to the version, name, and model fields to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2005-3491

Affected Products

Flatfrag

PT-2005-4287 · Flatfrag · Flatfrag

CVE-2005-3491

Related Identifiers

Affected Products

References · 7