Buffer overflow in the HandleCPCCommand function of sercd before 2.3.1 and sredird 2.2.1 and earlier allows remote attackers to execute arbitrary code.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Sredird | Denis_sbragion | 1.0 (including) | 1.0 (including) |
| Sredird | Denis_sbragion | 1.1.6 (including) | 1.1.6 (including) |
| Sredird | Denis_sbragion | 1.1.7 (including) | 1.1.7 (including) |
| Sredird | Denis_sbragion | 1.1.8 (including) | 1.1.8 (including) |
| Sredird | Denis_sbragion | 2.0 (including) | 2.0 (including) |
| Sredird | Denis_sbragion | 2.1 (including) | 2.1 (including) |
| Sredird | Denis_sbragion | 2.2 (including) | 2.2 (including) |
| Sredird | Denis_sbragion | 2.2.1 (including) | 2.2.1 (including) |
| Sercd | Peter_astrand | 2.3.0 (including) | 2.3.0 (including) |
References
- http://cvs.lysator.liu.se/viewcvs/viewcvs.cgi/sercd/sercd.c?root=sercd
- http://secunia.com/advisories/12351
- http://securitytracker.com/id?1011038
- http://www.osvdb.org/9100
- http://www.securityfocus.com/bid/11002
- http://www.securityfocus.com/bid/11033
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17059
- http://cvs.lysator.liu.se/viewcvs/viewcvs.cgi/sercd/sercd.c?root=sercd
- http://secunia.com/advisories/12351
- http://securitytracker.com/id?1011038
- http://www.osvdb.org/9100
- http://www.securityfocus.com/bid/11002
- http://www.securityfocus.com/bid/11033
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17059