CVE-2007-1543
nas - several vulnerabilities
EPSS 14.5%
Description
Stack-based buffer overflow in the accept_att_local function in server/os/connection.c in Network Audio System (NAS) before 1.8a SVN 237 allows remote attackers to execute arbitrary code via a long path slave name in a USL socket connection.
How to fix CVE-2007-1543
To remediate CVE-2007-1543, upgrade the affected package to a fixed version below.
- Debian/nas—upgrade to 1.8-4 or later
- Debian/nas—upgrade to 1.7-2sarge1 or later
Is CVE-2007-1543 being exploited?
Moderate — EPSS is 14.5%. Track this CVE but it's not at the top of the prioritisation list.
Affected packages (2)
- from 0, < 1.8-4
- from 0, < 1.7-2sarge1