PT-2009-2422 · Oovoo · Oovoo
Nine:Situations:Group
·
Published
2009-08-12
·
Updated
2018-10-11
·
CVE-2008-6953
CVSS v2.0
9.3
High
| Vector | AV:N/AC:M/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions:
ooVoo versions 1.7.1.35 through 1.7.1.58
Description:
The issue is related to a buffer overflow in the oovoo.exe component. This can be exploited by remote attackers through a long oovoo: URI, potentially leading to a denial of service (crash) and possibly the execution of arbitrary code.
Recommendations:
For versions 1.7.1.35 through 1.7.1.58, update to version 1.7.1.59 or later to resolve the issue.
Exploit
Fix
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Oovoo