| Max CVSS | 7.5 | Min CVSS | 7.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2007-5824 | 7.1 |
webserver.c in mt-dappd in Firefly Media Server 0.2.4 and earlier allows remote attackers to cause a denial of service (NULL dereference and daemon crash) via a stats method action to /xml-rpc with (1) an empty Authorization header line, which trigge
|
15-10-2018 - 21:46 | 05-11-2007 - 19:46 | |
| CVE-2007-5825 | 7.5 |
Format string vulnerability in the ws_addarg function in webserver.c in mt-dappd in Firefly Media Server 0.2.4 and earlier allows remote attackers to execute arbitrary code via a stats method action to /xml-rpc with format string specifiers in the (1
|
15-10-2018 - 21:46 | 05-11-2007 - 19:46 | |
| CVE-2008-1771 | 7.5 |
Integer overflow in the ws_getpostvars function in Firefly Media Server (formerly mt-daapd) 0.2.4.1 (0.9~r1696-1.2 on Debian) allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an HTTP POST request wi
|
08-08-2017 - 01:30 | 16-04-2008 - 15:05 |