VYPR
Unrated severityNVD Advisory· Published Sep 10, 2009· Updated Jun 16, 2026

CVE-2008-7160

CVE-2008-7160

Description

The silc_http_server_parse function in lib/silchttp/silchttpserver.c in the internal HTTP server in silcd in Secure Internet Live Conferencing (SILC) Toolkit before 1.1.9 allows remote attackers to overwrite a stack location and possibly execute arbitrary code via a crafted Content-Length header, related to incorrect use of a %lu format string.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

9
  • Silc/Silc Toolkit8 versions
    cpe:2.3:a:silcnet:silc_toolkit:*:*:*:*:*:*:*:*+ 7 more
    • cpe:2.3:a:silcnet:silc_toolkit:*:*:*:*:*:*:*:*range: <=1.1.8
    • cpe:2.3:a:silcnet:silc_toolkit:1.1:*:*:*:*:*:*:*
    • cpe:2.3:a:silcnet:silc_toolkit:1.1.1:*:*:*:*:*:*:*
    • cpe:2.3:a:silcnet:silc_toolkit:1.1.2:*:*:*:*:*:*:*
    • cpe:2.3:a:silcnet:silc_toolkit:1.1.3:*:*:*:*:*:*:*
    • cpe:2.3:a:silcnet:silc_toolkit:1.1.4:*:*:*:*:*:*:*
    • cpe:2.3:a:silcnet:silc_toolkit:1.1.5:*:*:*:*:*:*:*
    • cpe:2.3:a:silcnet:silc_toolkit:1.1.6:*:*:*:*:*:*:*

Patches

Vulnerability mechanics

References

10

News mentions

0

No linked articles in our index yet.