Intrusion Prevention

News.Rover.Subject.Buffer.Overflow

Description

S&H Computer Systems News Rover has a stack-based buffer overflow vulnerability. A remote attacker could execute arbitrary code on the system of a victim with the privileges of the application via a specially-crafted .nzb file that contains an overly long subject or group string.

Affected Products

News Rover 12.1

Impact

Gain Access.

Recommended Actions

Currently we are not aware of any vendor-supplied patches for this issue.
http://www.newsrover.com/

CVE References

CVE-2007-1041