VYPR
Vendor

Firefly Media Server

Products
4
CVEs
4
Across products
6
Status
Private

Products

4

Recent CVEs

4
  • CVE-2012-5875Jan 18, 2013
    risk 0.04cvss epss 0.11

    Firefly Media Server 1.0.0.1359 allows remote attackers to cause a denial of service (NULL pointer dereference) via a (1) crafted Connection HTTP header; a return carriage control character in the (2) Accept Language header, (3) User-agent header, (4) Host header, or (5)…

  • CVE-2007-5824Nov 5, 2007
    risk 0.03cvss epss 0.06

    webserver.c in mt-dappd in Firefly Media Server 0.2.4 and earlier allows remote attackers to cause a denial of service (NULL dereference and daemon crash) via a stats method action to /xml-rpc with (1) an empty Authorization header line, which triggers a crash in the…

  • CVE-2008-1771Apr 16, 2008
    risk 0.00cvss epss 0.04

    Integer overflow in the ws_getpostvars function in Firefly Media Server (formerly mt-daapd) 0.2.4.1 (0.9~r1696-1.2 on Debian) allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an HTTP POST request with a large Content-Length.

  • CVE-2007-5825Nov 5, 2007
    risk 0.00cvss epss 0.04

    Format string vulnerability in the ws_addarg function in webserver.c in mt-dappd in Firefly Media Server 0.2.4 and earlier allows remote attackers to execute arbitrary code via a stats method action to /xml-rpc with format string specifiers in the (1) username or (2) password…