VYPR
Unrated severityNVD Advisory· Published Mar 8, 2007· Updated Jun 16, 2026

CVE-2007-1344

CVE-2007-1344

Description

Multiple buffer overflows in src/ezstream.c in Ezstream before 0.3.0 allow remote attackers to execute arbitrary code via a crafted XML configuration file processed by the (1) urlParse function, which causes a stack-based overflow and the (2) ReplaceString function, which causes a heap-based overflow. NOTE: some of these details are obtained from third party information.

Affected products

2
  • Xiph.Org/Ezstream2 versions
    cpe:2.3:a:xiph:icecast_ezstream:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:xiph:icecast_ezstream:*:*:*:*:*:*:*:*range: <=0.1.0
    • (no CPE)range: <0.3.0

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.