PicoPhone Internet Phone 1.63 - Remote Buffer Overflow

EDB-ID:

23876


Platform:

Hardware

Published:

2004-03-24

source: http://www.securityfocus.com/bid/9969/info

It has been reported that Picophone is prone to a remote buffer overflow vulnerability. This issue is due to the application failing to verify the size of user input before storing it in a finite buffer.

Successful exploitation of this issue will cause a denial of service condition to be triggered. The attacker may also leverage this issue to execute arbitrary code; this code would be executed in the security context of the user running the affected process.

https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/23876.zip