Mereo 'GET' Request Remote Buffer Overflow Vulnerability Network Vulnerability

Summary

Mereo is prone to a remote buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied input before copying it to an insufficiently sized memory buffer. An attacker can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition. Mereo 1.9.2 is vulnerable other versions may also be affected.

References

http://www.assembla.com/spaces/mereo/wiki?id=bMd54a1Xer3OfueJe5aVNr
https://www.securityfocus.com/bid/42839

Updated on 2015-03-25

Severity

Classification

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

CoCSoft Stream Down Buffer overflow Vulnerability
Cyrus IMAP Server SIEVE Script Handling Buffer Overflow Vulnerability
Novell File Reporter 'SRS' Tag Arbitrary File Deletion Vulnerability
VLC Media Player USF and Text Subtitles Decoders BOF Vulnerabilities (Linux)
FileZilla Server Buffer Overflow Vulnerability

Take action and discover your vulnerabilities