Radscan : Security Vulnerabilities, CVEs, Published In 2007 (Denial of service)
The ReadRequestFromClient function in server/os/io.c in Network Audio System (NAS) before 1.8a SVN 237 allows remote attackers to cause a denial of service (crash) via multiple simultaneous connections, which triggers a NULL pointer dereference.
Max CVSS
7.8
EPSS Score
12.59%
Published
2007-03-20
Updated
2018-10-16
Array index error in Network Audio System (NAS) before 1.8a SVN 237 allows remote attackers to cause a denial of service (crash) via (1) large num_action values in the ProcAuSetElements function in server/dia/audispatch.c or (2) a large inputNum parameter to the compileInputs function in server/dia/auutil.c.
Max CVSS
5.0
EPSS Score
12.98%
Published
2007-03-20
Updated
2018-10-16
The AddResource function in server/dia/resource.c in Network Audio System (NAS) before 1.8a SVN 237 allows remote attackers to cause a denial of service (server crash) via a nonexistent client ID.
Max CVSS
5.0
EPSS Score
12.98%
Published
2007-03-20
Updated
2018-10-16
Integer overflow in the ProcAuWriteElement function in server/dia/audispatch.c in Network Audio System (NAS) before 1.8a SVN 237 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large max_samples value.
Max CVSS
5.0
EPSS Score
11.83%
Published
2007-03-20
Updated
2018-10-16
4 vulnerabilities found