26 matches found
PT-2004-2837 · Kphone · Kphone
Name of the Vulnerable Software and Affected Versions: KPhone versions 4.0.1 and earlier Description: The issue allows remote attackers to cause a denial of service, resulting in a crash, by sending a STUN response packet with a large attrLen value. This large value causes an out-of-bounds read...
kphone.stun.txt
KPhone STUN DoS Malformed STUN Packets ------------------------------------------------------------------------ Article reference: http://www.securiteam.com/unixfocus/5PP0B1FCLY.html SUMMARY KPhone is "a SIP Session Initiation Protocol user agent for Linux, with which you can initiate VoIP Voice...
KPhone buffer overflow
Stack overflow on parsing STUN packet...
[UNIX] KPhone STUN DoS (Malformed STUN Packets)
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...
KPhone 2.x3.x4.0.1 - Malformed STUN Packet Denial of Service
KPhone 2.x3.x4.0.1 - Malformed STUN Packet Denial of Service source: https://www.securityfocus.com/bid/10159/info A denial of service vulnerability has been reported in KPhone. This issue may be triggered by a malformed SIP Session Initiation Protocol STUN message. This is due to insufficient...
KPhone 2.x/3.x/4.0.1 - Malformed STUN Packet Denial of Service
source: https://www.securityfocus.com/bid/10159/info A denial of service vulnerability has been reported in KPhone. This issue may be triggered by a malformed SIP Session Initiation Protocol STUN message. This is due to insufficient validation of user-specified STUN packet attribute lengths,...