Lucene search

MitreCVE-2006-4029

HistoryAug 09, 2006 - 8:04 p.m.

CVE-2006-4029

2006-08-0920:04:00

mitre

web.nvd.nist.gov

cve-2006-4029

stack-based buffer overflow

sipd.dll

agephone

remote code execution

udp sip packet

nvd

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

8.4

Confidence

Low

EPSS

0.229

Percentile

96.6%

JSON

Stack-based buffer overflow in sipd.dll in AGEphone 1.24 and 1.38.1 allows remote attackers to execute arbitrary code via a crafted UDP SIP packet.

Affected configurations

Nvd

Node

ageetagephoneMatch1.24

ageetagephoneMatch1.38.1

VendorProductVersionCPE
ageetagephone1.24cpe:2.3:a:ageet:agephone:1.24:*:*:*:*:*:*:*
ageetagephone1.38.1cpe:2.3:a:ageet:agephone:1.38.1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ageet	agephone	1.24	cpe:2.3:a:ageet:agephone:1.24:::::::*
ageet	agephone	1.38.1	cpe:2.3:a:ageet:agephone:1.38.1:::::::*

References

marc.info/?l=full-disclosure&m=115383213602413&w=2

secunia.com/advisories/21175

securityreason.com/securityalert/1345

securitytracker.com/id?1016577

vuln.sg/agephone1381-en.html

www.securityfocus.com/archive/1/441086/100/100/threaded

www.securityfocus.com/bid/19148

www.vupen.com/english/advisories/2006/2959

exchange.xforce.ibmcloud.com/vulnerabilities/27944

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

8.4

Confidence

Low

EPSS

0.229

Percentile

96.6%

JSON

Related for CVE-2006-4029