2 matches found
Linux Distros Unpatched Vulnerability : CVE-2023-27601
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OpenSIPS is a Session Initiation Protocol SIP server implementation. Prior to versions 3.1.7 and 3.2.4, OpenSIPS crashes when a malformed SDP body is received a...
CVE-2023-27601
OpenSIPS vulnerable versions: before 3.1.7 and before 3.2.4. The crash is triggered when a malformed SDP body is processed by delete_sdp_line in the sipmsgops module, due to SDP lines not terminating with a line feed (\n). This can be exploited via configurations using codec_delete_except_re/code...