26 matches found
EUVD-2006-6732
Malware in sbrugna...
EUVD-2006-6858
Malware in sbrugna...
EUVD-2006-6859
Malware in sbrugna...
Cisco CallManager和Openser SIP消息非授权呼叫漏洞
BUGTRAQ ID: 26057 Cisco CallManager和OpenSER都是常用的网络IP电话解决方案。 Cisco CallManager和OpenSER没有检查用户在Digest认证头中所提供的URI是否与消息的REQUEST-URI一致,这允许恶意用户从正常用户嗅探Digest认证,然后代表该用户呼叫任意扩展。 Cisco Call Manger 5.1.1.3000-5 OpenSER OpenSER 1.2.2 Cisco ----- 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本:...
Authentication flaw
OpenSER 1.2.2 does not verify the Digest authentication header URI against the Request URI in SIP messages, which allows remote attackers to use sniffed Digest authentication credentials to call arbitrary telephone numbers or spoof caller ID aka "toll fraud and authentication forward attack". NOT...
CVE-2007-5469
OpenSER 1.2.2 does not verify the Digest authentication header URI against the Request URI in SIP messages, which allows remote attackers to use sniffed Digest authentication credentials to call arbitrary telephone numbers or spoof caller ID aka "toll fraud and authentication forward attack". NOT...
CVE-2007-5469
OpenSER 1.2.2 does not verify the Digest authentication header URI against the Request URI in SIP messages, which allows remote attackers to use sniffed Digest authentication credentials to call arbitrary telephone numbers or spoof caller ID aka "toll fraud and authentication forward attack". NOT...
PT-2007-6505 · Openser · Openser
Name of the Vulnerable Software and Affected Versions: OpenSER version 1.2.2 Description: The issue allows remote attackers to use sniffed Digest authentication credentials to call arbitrary telephone numbers or spoof caller ID, which can lead to toll fraud and authentication forward attacks. Thi...
CVE-2007-5469
OpenSER 1.2.2 does not verify the Digest authentication header URI against the Request URI in SIP messages, which allows remote attackers to use sniffed Digest authentication credentials to call arbitrary telephone numbers or spoof caller ID aka "toll fraud and authentication forward attack". NOT...
CVE-2007-5469
CVE-2007-5469 concerns OpenSER 1.2.2, where the system does not verify the Digest authentication header URI against the Request URI in SIP messages. This mismatch allows remote attackers to use sniffed Digest credentials to initiate calls to arbitrary telephone numbers or spoof caller ID (describ...
[Full-disclosure] CallManager and OpeSer toll fraud and authentication forward attack
MADYNES Security Advisory : SIP toll fraud and authentication forward attack Date of Discovery 5 May, 2007 Vendor1 Cisco was informed on 22 May 2007 Vendor 2 OpenSer, voice-systems was informed in 4 th October 2007 ID: KIPH11 Affected products CallManager: System version: 5.1.1.3000-5...
Cisco CallManager / OpenSer authentication relaying attacks
Insufficient Digest authentication validation allows active man-in-the-middle to access resources unrequested by client...
CVE-2006-6875
CVE-2006-6875 affects OpenSER 1.1.0 and earlier, with a buffer overflow in the validateospheader function of the Open Settlement Protocol (OSP) module that enables remote code execution via a crafted OSP header. No exploitation details are provided in the connected documents. No remediation is st...
CVE-2006-6876
OpenSER 1.2.0 and earlier contains a buffer overflow in fetchsms (libsms_getsms.c) that can be triggered by a crafted SMS message. The vulnerability causes memory corruption when the beginning buffer is copied to the third (pdu) argument, enabling a remote denial of service (crash). Affected vers...
CVE-2006-6876
Buffer overflow in the fetchsms function in the SMS handling module libsmsgetsms.c in OpenSER 1.2.0 and earlier allows remote attackers to cause a denial of service crash via a crafted SMS message, triggering memory corruption when the "beginning" buffer is copied to the third pdu argument...
CVE-2006-6876
Buffer overflow in the fetchsms function in the SMS handling module libsmsgetsms.c in OpenSER 1.2.0 and earlier allows remote attackers to cause a denial of service crash via a crafted SMS message, triggering memory corruption when the "beginning" buffer is copied to the third pdu argument...
CVE-2006-6875
Buffer overflow in the validateospheader function in the Open Settlement Protocol OSP module in OpenSER 1.1.0 and earlier allows remote attackers to execute arbitrary code via a crafted OSP header...
OpenSER OSP模块Validateospheader函数缓冲区溢出漏洞
OpenSER是一款开放源码的SIP服务器。 OpenSER的开放结算协议(OSP)模块中Validateospheader函数在处理特制报文时存在缓冲区溢出,远程攻击者可能利用此漏洞在服务器上执行任意指令。 漏洞相关的代码如下: int validateospheader struct sipmsg msg, char ignore1, char ignore2 如果攻击者向服务器发送了恶意报文的话就可能触发这个漏洞,导致远程执行任意指令。 OpenSER OpenSER = 1.1.0 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本:...
Multiple OpenSER vulnerabilities
Memory corruption on SMS parsing, buffer overflow on OSP parsing, on QuickCAM objects parsing...
OpenSER OSP Module remote code execution
Synopsis: OpenSER OSP Module remote code execution Product: OpenSER Version: =1.1.0 Issue: ====== A critical security vulnerability has been found in OpenSER Open Settlement Protocol OSP module. OSP is an ETSI defined standard for Inter-Domain VoIP pricing,authorization and usage exchange. Detail...