CVE-2017-11654CVE-2017-11654

Affected configuration(s):

cpe:/a:sipcrack:sipcrack:0.2

Date published: 2017-07-26T10:29:00.177-04:00

Date last modified: 2017-08-01T21:29:00.563-04:00

CVSS Score: 4.3

Principal attack vector: NETWORK

Complexity:  MEDIUM

Reference URL: http://openwall.com/lists/oss-security/2017/07/26/1

Summary: An out-of-bounds read and write flaw was found in the way SIPcrack 0.2 processed SIP traffic, because 0x00 termination of a payload array was mishandled. A remote attacker could potentially use this flaw to crash the sipdump process by generating specially crafted SIP traffic.

CategoriesUncategorised

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.