CVE-2008-6393

PSI Jabber client before 0.12.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a file transfer request with a negative value in a SOCKS5 option, which bypasses a signed integer check and triggers an integer overflow and a heap-based buffer overflow.
Configurations

Configuration 1


Information

Published : 2009-03-03 04:30

Updated : 2017-09-29 01:33


NVD link : CVE-2008-6393

Mitre link : CVE-2008-6393

Products Affected
CWE
CWE-839

Numeric Range Comparison Without Minimum Check