RSS   Vulnerabilities for 'Sipcrack'   RSS

2017-07-26
 
CVE-2017-11655

CWE-772
 

 
A memory leak was found in the way SIPcrack 0.2 handled processing of SIP traffic, because a lines array was mismanaged. A remote attacker could potentially use this flaw to crash long-running sipdump network sniffing sessions.

 
 
CVE-2017-11654

 

 
An out-of-bounds read and write flaw was found in the way SIPcrack 0.2 processed SIP traffic, because 0x00 termination of a payload array was mishandled. A remote attacker could potentially use this flaw to crash the sipdump process by generating specially crafted SIP traffic.

 


Copyright 2024, cxsecurity.com

 

Back to Top