CVE-2007-6454

Name of the Vulnerable Software and Affected Versions: PeerCast versions 0.1217 and earlier PeerCast SVN versions 344 and earlier

Description: The issue is related to a heap-based buffer overflow in the handshakeHTTP function, which can be exploited by remote attackers. This can lead to a denial of service and potentially allow the execution of arbitrary code via a long SOURCE request. Additionally, there are multiple vulnerabilities in the gnome-peercast package that can compromise the confidentiality, integrity, and availability of protected information, and these can be exploited remotely.

Recommendations: For PeerCast versions 0.1217 and earlier, consider disabling the handshakeHTTP function in servhs.cpp to prevent exploitation until a patch is available. For PeerCast SVN versions 344 and earlier, restrict access to the vulnerable SVN version to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.