CVE-2008-4631 (NVD)

2008-10-20

Stack-based buffer overflow in the Message::AddToString function in message/Message.cpp in MUSCLE before 4.40 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted message. NOTE: some of these details are obtained from third party information.

Products Muscle
Type Improper Restriction of Operations within the Bounds of a Memory Buffer (CWE-119)
First patch - None (likely due to unavailable code)
Links https://exchange.xforce.ibmcloud.com/vulnerabilities/45959
http://www.securityfocus.com/bid/31822
https://public.msli.com/lcs/muscle/muscle/HISTORY.txt
http://www.vupen.com/english/advisories/2008/2869
http://secunia.com/advisories/32318