Buffer overflow

🗓️ 09 Jun 2006 10:02:00Reported by PRIOn knowledge baseType

Buffer overflow in iax_net_read function in open source library used in various products allows remote attackers to execute arbitrary code via crafted IAX 2 packets with truncated full frames or mini-frames, leading to buffer overflows related to negative length values

Reporter	Title	Published	Views	Family All 10
Core Security	IAXclient truncated frames vulnerabilities	9 Jun 200600:00	–	coresecurity
CVE	CVE-2006-2923	9 Jun 200610:00	–	cve
Cvelist	CVE-2006-2923	9 Jun 200610:00	–	cvelist
Tenable Nessus	GLSA-200606-30 : Kiax: Arbitrary code execution	3 Jul 200600:00	–	nessus
Tenable Nessus	IAXClient Open Source Library iax_net_read Function Packet Handling Remote Overflow	12 Jun 200600:00	–	nessus
Gentoo Linux	Kiax: Arbitrary code execution	30 Jun 200600:00	–	gentoo
NVD	CVE-2006-2923	9 Jun 200610:02	–	nvd
OpenVAS	Gentoo Security Advisory GLSA 200606-30 (kiax)	24 Sep 200800:00	–	openvas
OpenVAS	Gentoo Security Advisory GLSA 200606-30 (kiax)	24 Sep 200800:00	–	openvas
securityvulns	[Full-disclosure] [ GLSA 200606-30 ] Kiax: Arbitrary code execution	30 Jun 200600:00	–	securityvulns

Source	Link
loudhush	www.loudhush.ro/changelog.txt
securityfocus	www.securityfocus.com/bid/18307
secunia	www.secunia.com/advisories/20466
coresecurity	www.coresecurity.com/common/showdoc.php
iaxclient	www.iaxclient.sourceforge.net/iaxcomm/
sourceforge	www.sourceforge.net/project/shownotes.php
secunia	www.secunia.com/advisories/20623
secunia	www.secunia.com/advisories/20560
secunia	www.secunia.com/advisories/20567
gentoo	www.gentoo.org/security/en/glsa/glsa-200606-30.xml

18 Oct 2018 16:43Current

8.7High risk

Vulners AI Score8.7

EPSS0.11205