Avirt Voice HTTP GET Remote Buffer Overrun Vulnerability

Avirt Voice is prone to a remotely exploitable buffer overrun when handling HTTP GET requests of excessive length via the embedded server component listening on TCP port 1080. This may crash the server or could allow for remote attackers to execute arbitrary code in the context of the server process.

This issue was reported in Avirt Voice 4.0. Other versions may also be affected.


 

Privacy Statement
Copyright 2010, SecurityFocus