Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple buffer overflows in src/ezstream.c in Ezstream before 0.3.0 allow remote attackers to execute arbitrary code via a crafted XML configuration file processed by the (1) urlParse function, which causes a stack-based overflow and the (2) ReplaceString function, which causes a heap-based overflow. NOTE: some of these details are obtained from third party information.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Ezstream 安全漏洞
Vulnerability Description
Ezstream是一个应用软件。一个用于媒体流的命令行源客户端,主要用于流式传输到 Icecast 服务器。 Ezstream处理用户请求时存在安全漏洞,远程攻击者可能利用这些漏洞,在用户机器上执行任意指令。Ezstream的src/ezstream.c文件中urlParse()函数存在栈溢出漏洞,ReplaceString()函数中存在堆溢出漏洞。如果用户打开了特制的xml配置文件的话就会触发这些溢出,导致执行任意指令。
CVSS Information
N/A
Vulnerability Type
N/A