PUB-A-481652714

In ParsePayloads of AudioSdpParser.cpp, there is a possible memory corruption due to type confusion. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation...

Wireshark Denial of Service Vulnerability (CNVD-2023-72254)

Wireshark formerly known as Ethereal is a set of network packet analysis software from the Wireshark team. The function of the software is to intercept network packets and display detailed data for analysis. Wireshark suffers from a denial-of-service vulnerability that originates from an infinite...

Wireshark 安全漏洞

Wireshark formerly Ethereal is a suite of network packet analysis software from the Wireshark team. The function of the software is to intercept network packets and display detailed data for analysis. A security vulnerability exists in Wireshark versions 4.0.0 through 4.0.7 and 3.6.0 through...

Wireshark 安全漏洞

Wireshark formerly known as Ethereal is a set of network packet analysis software from the Wireshark team. The function of the software is to intercept network packets and display detailed data for analysis. Wireshark suffers from a denial-of-service vulnerability that originates from an infinite...

DEBIAN-CVE-2022-39244

PJSIP is a free and open source multimedia communication library written in C. In versions of PJSIP prior to 2.13 the PJSIP parser, PJMEDIA RTP decoder, and PJMEDIA SDP parser are affeced by a buffer overflow vulnerability. Users connecting to untrusted clients are at risk. This issue has been...

UBUNTU-CVE-2020-13900

An issue was discovered in janus-gateway aka Janus WebRTC Server through 0.10.0. janussdppreparse in sdp.c has a NULL pointer dereference...

PT-2018-9278

Name of the Vulnerable Software and Affected Versions: Teluu PJSIP versions 2.7.1 and earlier Description: The issue is related to a null or uninitialized pointer access in the pjmedia SDP parsing component, which can cause a crash. This can be exploited by sending a specially crafted message...

CVE-2016-6448

A vulnerability in the Session Description Protocol SDP parser of Cisco Meeting Server could allow an unauthenticated, remote attacker to execute arbitrary code on an affected system. This vulnerability affects the following products: Cisco Meeting Server releases prior to Release 2.0.3, Acano...

CVE-2016-6448

Cisco Meeting Server SDP parser buffer overflow (CVE-2016-6448) affects Cisco Meeting Server releases prior to 2.0.3, Acano Server 1.8.x and 1.9.x prior to 1.8.17/1.9.5. Vulnerability stems from incomplete input validation of SDP media line sizes, allowing unauthenticated, remote attackers to exe...

CVE-2016-6448

A vulnerability in the Session Description Protocol SDP parser of Cisco Meeting Server could allow an unauthenticated, remote attacker to execute arbitrary code on an affected system. This vulnerability affects the following products: Cisco Meeting Server releases prior to Release 2.0.3, Acano...

Ubuntu 6.06 LTS / 7.04 / 7.10 / 8.04 LTS : xine-lib vulnerabilities (USN-635-1)

Alin Rad Pop discovered an array index vulnerability in the SDP parser. If a user or automated system were tricked into opening a malicious RTSP stream, a remote attacker may be able to execute arbitrary code with the privileges of the user invoking the program. CVE-2008-0073 Luigi Auriemma...

[Full-disclosure] [MU-200803-01] Multiple buffer overflows in Asterisk

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Multiple buffer overflows in Asterisk MU-200803-01 March 18, 2008 http://labs.musecurity.com/advisories.html Affected Products/Versions: Asterisk 1.4.18 and other branches http://www.asterisk.org/node/48466 Product Overview: Asterisk is an open source...

Stack overflow

Multiple stack-based buffer overflows in the processsdp function in chansip.c of the SIP channel T.38 SDP parser in Asterisk before 1.4.3 allow remote attackers to execute arbitrary code via a long 1 T38FaxRateManagement or 2 T38FaxUdpEC SDP parameter in an SIP message, as demonstrated using SIP...