mt-daapd DAAP audio server vulnerabilities
First of all don't forget to keep your server patched.
# apt-get updateThree Vulnerabilities on Firefly Media Server ( mt-daapd DAAP audio server).
# apt-get upgrade
1. HTTP header enables a heap buffer overflow, potentially enabling the execution of arbitrary code.
2. Format string vulnerabilities in debug logging within the authentication of XML-RPC requests could enable the execution of arbitrary code.
3. An integer overflow weakness in the handling of HTTP POST variables could allow a heap buffer overflow and potentially arbitrary code execution.
You should consider to secure your system :-)
4:31 PM
|
Tags:
security
|
This entry was posted on 4:31 PM
and is filed under
security
.
You can follow any responses to this entry through
the RSS 2.0 feed.
You can leave a response,
or trackback from your own site.
Subscribe to:
Post Comments (Atom)
0 Comments:
Post a Comment