CVE-2006-2023

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
25/04/2006
Last modified:
03/04/2025

Description

Integer overflow in the RTSP_msg_len function in rtsp/RTSP_msg_len.c in Fenice 1.10 and earlier allows remote attackers to cause a denial of service (application crash) via a large HTTP Content-Length value, which leads to an invalid memory access.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:ls3:fenice:*:*:*:*:*:*:*:* 1.10 (including)