24 matches found
eStara Softphone <= 3.0.1.46 (SIP) Remote Buffer Overflow Exploit
No description provided by source. / eStara Softphone buffer overflow exploit tested on : eStara Softphone 3.0.1.14 |||||| eStara Softphone 3.0.1.46 Vender website : http://www.estara.com/softphone/softph.exe Run this application, then use nc to send builded packet : nc -u 127.0.0.1 5060...
CounterPath eyeBeam 1.1 build 3010n SIP Header Data Remote Buffer Overflow Vulnerability (1)
No description provided by source. source: http://www.securityfocus.com/bid/16253/info A remote buffer-overflow vulnerability affects CounterPath eyeBeam because the application fails to properly validate the length of user-supplied strings prior to copying them into static process buffers. An...
eStara SoftPhone 3.0.1 - SIP SDP Message Handling Format String DoS
No description provided by source. source: http://www.securityfocus.com/bid/16629/info eStara Smartphone is prone to multiple denial-of-service vulnerabilities when processing malformed VOIP headers. Successful exploitation will cause the device to crash. INVITE sip:[email protected] SIP/2.0 Via:...
eStara SoftPhone 3.0.1 SIP Packet Multiple Malformed Field DoS
No description provided by source. source: http://www.securityfocus.com/bid/16629/info eStara Smartphone is prone to multiple denial-of-service vulnerabilities when processing malformed VOIP headers. Successful exploitation will cause the device to crash. For the negative 'Expires' field issue:...
eStara Softphone <= 3.0.1.46 (SIP) Remote Buffer Overflow Exploit
No description provided by source. / eStara Softphone buffer overflow exploit tested on : eStara Softphone 3.0.1.14 |||||| eStara Softphone 3.0.1.46 Vender website : http://www.estara.com/softphone/softph.exe Run this application, then use nc to send builded packet : nc -u 127.0.0.1 5060...
eStara SoftPhone SIP Packet SDP Data attribute Field Overflow
The version of SoftPhone installed on the remote host reportedly fails to properly handle SIP packets with long 'a=' lines in the SDP data. An unauthenticated, remote attacker may be able to exploit this flaw to overflow a buffer and execute arbitrary code on the remote host. C Tenable Network...
eStara SoftPhone Detection
The remote host is running eStara SoftPhone, a commercial SIP software client for Windows. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid20957; scriptversion"1.14"; scriptcvsdate"Date: 2019/11/22"; scriptnameenglish:"eStara SoftPhone Detection";...
eStara SoftPhone 3.0.1 SIP Packet - Multiple Malformed Field Denial of Service Vulnerabilities
eStara SoftPhone 3.0.1 SIP Packet - Multiple Malformed Field Denial of Service Vulnerabilities source: https://www.securityfocus.com/bid/16629/info eStara Smartphone is prone to multiple denial-of-service vulnerabilities when processing malformed VOIP headers. Successful exploitation will cause t...
eStara SoftPhone 3.0.1 - SIP SDP Message Handling Format String Denial of Service
eStara SoftPhone 3.0.1 - SIP SDP Message Handling Format String Denial of Service source: https://www.securityfocus.com/bid/16629/info eStara Smartphone is prone to multiple denial-of-service vulnerabilities when processing malformed VOIP headers. Successful exploitation will cause the device to...
eStara SoftPhone 3.0.1 SIP Packet - Multiple Malformed Field Denial of Service Vulnerabilities
source: https://www.securityfocus.com/bid/16629/info eStara Smartphone is prone to multiple denial-of-service vulnerabilities when processing malformed VOIP headers. Successful exploitation will cause the device to crash. For the negative 'Expires' field issue: OPTIONS sip:[email protected] SIP/2.0 Via...
eStara SoftPhone 3.0.1 - SIP SDP Message Handling Format String Denial of Service
source: https://www.securityfocus.com/bid/16629/info eStara Smartphone is prone to multiple denial-of-service vulnerabilities when processing malformed VOIP headers. Successful exploitation will cause the device to crash. INVITE sip:[email protected] SIP/2.0 Via: SIP/2.0/UDP...
eStara Softphone SIP VoIP phone buffer overflow
Buffer overflow on oversized SIP packet attribute field. Integer overflows and format string bugs...
CVE-2006-0189
Buffer overflow in eStara Softphone 3.0.1.14 through 3.0.1.46 allows remote attackers to execute arbitrary code via a long attribute aka "a" field in the SDP data of a SIP packet on UDP port 5060...
Buffer overflow
Buffer overflow in eStara Softphone 3.0.1.14 through 3.0.1.46 allows remote attackers to execute arbitrary code via a long attribute aka "a" field in the SDP data of a SIP packet on UDP port 5060...
CVE-2006-0189
Buffer overflow in eStara Softphone 3.0.1.14 through 3.0.1.46 allows remote attackers to execute arbitrary code via a long attribute aka "a" field in the SDP data of a SIP packet on UDP port 5060...
CVE-2006-0189
CVE-2006-0189 involves eStara SoftPhone. The vulnerability is a buffer overflow in SoftPhone versions 3.0.1.14 through 3.0.1.46 triggered by long SDP attributes (a=) inside SIP data carried over UDP port 5060. An unauthenticated remote attacker could potentially execute arbitrary code on the remo...
eStara SoftPhone 3.0.1.46 - SIP Remote Buffer Overflow (2)
eStara SoftPhone 3.0.1.46 - SIP Remote Buffer Overflow 2 !/usr/bin/perl -s damn-hippie.pl by kokanin google estara, it shows sip stuff and a hippie Remote "estara softphone" exploit, executable version info = 3.0.1.2 kokanin did the research, metasploit.com did the encoded bindshell on tcp/5060...
eStara SoftPhone 3.0.1.46 - SIP Remote Buffer Overflow (2)
!/usr/bin/perl -s damn-hippie.pl by kokanin google estara, it shows sip stuff and a hippie Remote "estara softphone" exploit, executable version info = 3.0.1.2 kokanin did the research, metasploit.com did the encoded bindshell on tcp/5060 Lets face it, most users wont know the difference between...
eStara SoftPhone 3.0.1.46 - SIP Remote Buffer Overflow (1)
/ eStara Softphone buffer overflow exploit tested on : eStara Softphone 3.0.1.14 |||||| eStara Softphone 3.0.1.46 Vender website : http://www.estara.com/softphone/softph.exe Run this application, then use nc to send builded packet : nc -u 127.0.0.1 5060 include unsigned char invite = 0x49, 0x4E,...
eStara SoftPhone 3.0.1.46 - SIP Remote Buffer Overflow (1)
eStara SoftPhone 3.0.1.46 - SIP Remote Buffer Overflow 1 / eStara Softphone buffer overflow exploit tested on : eStara Softphone 3.0.1.14 |||||| eStara Softphone 3.0.1.46 Vender website : http://www.estara.com/softphone/softph.exe Run this application, then use nc to send builded packet : nc -u...