In association with heise online

05 November 2007, 16:23

Security update for Firefly Media Server

  • Twitter
  • Facebook
  • submit to slashdot
  • StumbleUpon
  • submit to reddit

The current version 0.2.4.1 of Firefly Media Server resolves three vulnerabilities which allow attackers to crash the application or remotely execute arbitrary code. Firefly is an open source streaming server which was developed specifically for Roku Soundbridge and iTunes.

The vulnerabilities are caused by null pointer dererferencing and by a format string flaw in the integrated web server. Since Firefly is mainly used in local home networks the risk of exploitation is small.

See also:

(mba)

Print Version | Send by email | Permalink: http://h-online.com/-733912
 


  • July's Community Calendar





The H Open

The H Security

The H Developer

The H Internet Toolkit