6.3 Medium
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.092 Low
EPSS
Percentile
94.7%
The Open Phone Abstraction Library (opal), as used by (1) Ekiga before 2.0.10 and (2) OpenH323 before 2.2.4, allows remote attackers to cause a denial of service (crash) via an invalid Content-Length header field in Session Initiation Protocol (SIP) packets, which causes a \0 byte to be written to an โattacker-controlled address.โ
CPE | Name | Operator | Version |
---|---|---|---|
openh323_project:openh323 | openh323 project openh323 | le | 2.2.3 |
ekiga:ekiga | ekiga | le | 2.0.9 |
lists.opensuse.org/opensuse-security-announce/2007-10/msg00006.html
mail.gnome.org/archives/ekiga-list/2007-September/msg00103.html
openh323.cvs.sourceforge.net/openh323/opal/src/sip/sippdu.cxx?r1=2.83.2.19&r2=2.83.2.20
osvdb.org/41637
secunia.com/advisories/27118
secunia.com/advisories/27128
secunia.com/advisories/27129
secunia.com/advisories/27271
secunia.com/advisories/27524
secunia.com/advisories/28380
www.mandriva.com/security/advisories?name=MDKSA-2007:205
www.redhat.com/support/errata/RHSA-2007-0957.html
www.s21sec.com/avisos/s21sec-037-en.txt
www.securityfocus.com/archive/1/482120/30/4500/threaded
www.securityfocus.com/bid/25955
www.securitytracker.com/id?1018776
www.ubuntu.com/usn/usn-562-1
www.vupen.com/english/advisories/2007/3413
www.vupen.com/english/advisories/2007/3414
bugzilla.redhat.com/show_bug.cgi?id=296371
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11398
www.exploit-db.com/exploits/9240