This CPE summary could be partial or incomplete. Please contact us for a detailed listing.
Summary
| Detail | |||
|---|---|---|---|
| Vendor | Fireflymediaserver | First view | 2008-04-16 |
| Product | Fireflymediaserver | Last view | 2008-04-16 |
| Version | Type | Application | |
| Update | |||
| Edition | |||
| Language | |||
| Sofware Edition | |||
| Target Software | |||
| Target Hardware | |||
| Other | |||
Activity : Overall
COMMON PLATFORM ENUMERATION: Repartition per Version
| CPE Name | Affected CVE |
|---|---|
| cpe:2.3:a:fireflymediaserver:fireflymediaserver:0.2.4.1:*:*:*:*:*:*:* | 1 |
Related : CVE
| Date | Alert | Description | |
|---|---|---|---|
| 7.5 | 2008-04-16 | CVE-2008-1771 | Integer overflow in the ws_getpostvars function in Firefly Media Server (formerly mt-daapd) 0.2.4.1 (0.9~r1696-1.2 on Debian) allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an HTTP POST request with a large Content-Length. |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 100% (1) | CWE-189 | Numeric Errors |
Oval Markup Language : Definitions
| OvalID | Name |
|---|---|
| oval:org.mitre.oval:def:8291 | DSA-1597 mt-daapd -- multiple vulnerabilities |
| oval:org.mitre.oval:def:20294 | DSA-1597-1 mt-daapd - several vulnerabilities |
Open Source Vulnerability Database (OSVDB)
| id | Description |
|---|---|
| 44448 | Firefly Media Server ws_getpostvars Function Content-Length Header HTTP Reque... |
OpenVAS Exploits
| id | Description |
|---|---|
| 2009-02-17 | Name : Fedora Update for mt-daapd FEDORA-2008-3250 File : nvt/gb_fedora_2008_3250_mt-daapd_fc8.nasl |
| 2009-02-17 | Name : Fedora Update for mt-daapd FEDORA-2008-4126 File : nvt/gb_fedora_2008_4126_mt-daapd_fc9.nasl |
| 2008-09-04 | Name : FreeBSD Ports: mt-daapd File : nvt/freebsd_mt-daapd0.nasl |
| 2008-06-28 | Name : Debian Security Advisory DSA 1597-1 (mt-daapd) File : nvt/deb_1597_1.nasl |
Nessus® Vulnerability Scanner
| id | Description |
|---|---|
| 2008-06-16 | Name: The remote Debian host is missing a security-related update. File: debian_DSA-1597.nasl - Type: ACT_GATHER_INFO |
| 2008-05-20 | Name: The remote Fedora host is missing a security update. File: fedora_2008-4126.nasl - Type: ACT_GATHER_INFO |
| 2008-05-09 | Name: The remote FreeBSD host is missing a security-related update. File: freebsd_pkg_86a4d810188411dda9140016179b2dd5.nasl - Type: ACT_GATHER_INFO |
| 2008-04-25 | Name: The remote Fedora host is missing a security update. File: fedora_2008-3250.nasl - Type: ACT_GATHER_INFO |
| 2008-04-23 | Name: The remote web server is affected by an integer overflow vulnerability. File: firefly_content_overflow.nasl - Type: ACT_ATTACK |
