CVE-2007-1344

Name of the Vulnerable Software and Affected Versions Ezstream versions prior to 0.3.0

Description The issue is related to multiple buffer overflows in the src/ezstream.c file. These overflows can be triggered by a crafted XML configuration file, which is processed by the urlParse function, causing a stack-based overflow, and the ReplaceString function, causing a heap-based overflow. This can allow remote attackers to execute arbitrary code.

Recommendations For Ezstream versions prior to 0.3.0, update to version 0.3.0 or later to resolve the issue. As a temporary workaround, consider restricting the use of crafted XML configuration files to minimize the risk of exploitation.