Vulnerabilities > CVE-2008-0548 - Numeric Errors vulnerability in Radio Toolbox Steamcast

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

radio-toolbox

CWE-189

NVD

Published: 2008-02-01

Updated: 2017-08-08

Summary

Steamcast 0.9.75 and earlier allows remote attackers to cause a denial of service (daemon crash) via a large integer in the Content-Length HTTP header, which triggers a NULL dereference when malloc fails.

Vulnerable Configurations

Part	Description	Count
Application	Radio_Toolbox Radio Toolbox Steamcast *	1

Common Weakness Enumeration (CWE)

CWE-189 - Numeric Errors

References

http://aluigi.altervista.org/adv/steamcazz-adv.txt
https://exchange.xforce.ibmcloud.com/vulnerabilities/39927