12 matches found
EUVD-2018-8459
Malware in sbrugna...
EUVD-2020-20821
Malware in sbrugna...
EUVD-2013-7190
Malware in sbrugna...
EUVD-2018-6653
Malware in sbrugna...
Ubuntu: Security Advisory (USN-7416-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Arbitrary Code Execution
kamailio is vulnerable to arbitrary code execution. Lack of input validation allows an attacker to execute arbitrary code on the system via a malicious SIP message containing multiple To header and an empty To tag, which results in a segmentation fault...
USN-4240-1 kamailio vulnerability
It was discovered that Kamailio incorrectly handled a specially crafted file. An attacker could possibly use this issue to cause a denial of service or other unspecified impact...
PT-2018-13677 · Kamailio +2 · Kamailio +2
Name of the Vulnerable Software and Affected Versions: Kamailio versions prior to 5.0.7 Kamailio versions 5.1.x prior to 5.1.4 Description: A crafted SIP message with an invalid Via header can cause a segmentation fault and crash Kamailio due to missing input validation in the crcitt string array...
ALPINE-CVE-2018-14767
In Kamailio before 5.0.7 and 5.1.x before 5.1.4, a crafted SIP message with a double "To" header and an empty "To" tag causes a segmentation fault and crash. The reason is missing input validation in the "buildresbuffromsipreq" core function. This could result in denial of service and potentially...
UBUNTU-CVE-2018-14767
In Kamailio before 5.0.7 and 5.1.x before 5.1.4, a crafted SIP message with a double "To" header and an empty "To" tag causes a segmentation fault and crash. The reason is missing input validation in the "buildresbuffromsipreq" core function. This could result in denial of service and potentially...
CVE-2015-1591
The kamailio build in kamailio before 4.2.0-2 process allows local users to gain privileges...
CVE-2016-2385
Heap-based buffer overflow in the encodemsg function in encodemsg.c in the SEAS module in Kamailio formerly OpenSER and SER before 4.3.5 allows remote attackers to cause a denial of service memory corruption and process crash or possibly execute arbitrary code via a large SIP packet...