Lucene search
K

26 matches found

securityvulns
securityvulns
added 2006/12/29 12:0 a.m.32 views

OpenSER OSP Module remote code execution

Synopsis: OpenSER OSP Module remote code execution Product: OpenSER Version: =1.1.0 Issue: ====== A critical security vulnerability has been found in OpenSER Open Settlement Protocol OSP module. OSP is an ETSI defined standard for Inter-Domain VoIP pricing,authorization and usage exchange. Detail...

2.4AI score
Exploits0
securityvulns
securityvulns
added 2006/12/29 12:0 a.m.30 views

SMS handling OpenSER remote code executing

Synopsis: SMS handling OpenSER remote code executing Product: OpenSER Version: =1.1.0 Issue: ====== A critical security vulnerability has been found in OpenSER SMS handling module. The vulnerable function should read the SMS from the SIM-memory. Details: ======== int fetchsmsstruct modem mdm, int...

2.7AI score
Exploits0
NVD
NVD
added 2006/12/27 12:28 a.m.12 views

CVE-2006-6749

Buffer overflow in the parseexpression function in parseconfig in OpenSER 1.1.0 allows attackers to have an unknown impact via a long str parameter...

9.3CVSS6.8AI score0.01747EPSS
Exploits0References7
CVE
CVE
added 2006/12/27 12:0 a.m.37 views

CVE-2006-6749

The provided data identifies CVE-2006-6749 as a vulnerability in OpenSER 1.1.0 where a buffer overflow occurs in the parse_expression function within parse_config, triggered by a long str parameter. The root cause is a buffer overflow in that function. The description specifies the impact as unkn...

9.3CVSS7.2AI score0.01747EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2006/12/27 12:0 a.m.19 views

CVE-2006-6749

Buffer overflow in the parseexpression function in parseconfig in OpenSER 1.1.0 allows attackers to have an unknown impact via a long str parameter...

6.8AI score0.01747EPSS
Exploits0References7
seebug.org
seebug.org
added 2006/12/26 12:0 a.m.20 views

OpenSER Parse_Expression远程缓冲区溢出漏洞

OpenSER是一款开放源代码的SIP路由实现。 OpenSER包含的parseexpression函数存在边界条件错误,远程攻击者可以利用漏洞以服务进程权限执行任意指令。 问题存在于static int parseexpressionchar str, expression e, expression eexceptions函数中,由于/str/没有进行正确检查,可能导致覆盖目标缓冲区而造成任意代码执行。目前没有详细漏洞细节提供。 OpenSER OpenSER 1.1 目前没有详细解决方案提供: http://www.openser.org/...

7.1AI score
Exploits0
Rows per page
Query Builder