[RT-SA-2016-004] Websockify: Remote Code Execution via Buffer Overflow

May 31, 2016 007admin Leave a comment

Posted by RedTeam Pentesting GmbH on May 31

Advisory: Websockify: Remote Code Execution via Buffer Overflow

RedTeam Pentesting discovered a buffer overflow vulnerability in the C
implementation of Websockify, which allows attackers to execute
arbitrary code.

Details
=======

Product: Websockify C implementation
Affected Versions: all versions <= 0.8.0
Fixed Versions: versions since commit 192ec6f (2016-04-22) [0]
Vulnerability Type: Buffer Overflow
Security Risk: high
Vendor URL:…

007 Software

[RT-SA-2016-004] Websockify: Remote Code Execution via Buffer Overflow

Leave a Reply Cancel reply

Software and Security Information