CVE-2008-6444

UNRATEDMemory safety

Description

Stack-based buffer overflow in CSTransfer.dll in Baidu Hi IM might allow remote attackers to execute arbitrary code via a crafted packet, probably related to an improper length value.

Affected products

Baidu / baidu_hi

References

MISChttp://www.securityfocus.com/archive/1/496322/100/0/threaded
MISChttp://www.securityfocus.com/bid/31162
MISChttp://osvdb.org/51696
MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/45117