FreeBSD : mt-daapd -- integer overflow (86a4d810-1884-11dd-a914-0016179b2dd5)
High Nessus Plugin ID 32146
SynopsisThe remote FreeBSD host is missing a security-related update.
DescriptionFrSIRT reports :
A vulnerability has been identified in mt-daapd which could be exploited by remote attackers to cause a denial of service or compromise an affected system. This issue is caused by a buffer overflow error in the ws_getpostvars() function when processing a negative Content-Length : header value, which could be exploited by remote unauthenticated attackers to crash an affected application or execute arbitrary code.
SolutionUpdate the affected package.