CVE-2014-5439

Name of the Vulnerable Software and Affected Versions Sniffit versions prior to 0.3.7

Description The issue exists due to multiple Stack-based Buffer Overflow vulnerabilities. These vulnerabilities can be triggered via a crafted configuration file, which bypasses Non-eXecutable bit (NX), stack smashing protector (SSP), and address space layout randomization (ASLR) protection mechanisms. This could allow a malicious user to execute arbitrary code.

Recommendations For versions prior to 0.3.7, update to version 0.3.7 or later to resolve the issue.