5 matches found
PT-2026-34043
Name of the Vulnerable Software and Affected Versions Coturn versions prior to 4.10.0 Description STUN/TURN attribute parsing functions perform unsafe pointer casts from uint8 t to uint16 t without alignment checks. When processing a crafted STUN message with odd-aligned attribute boundaries,...
USN-8122-1 pjproject vulnerabilities
Youngsung Kim discovered that PJSIP did not properly parse numeric header fields in SIP messages. A remote attacker could use this issue to cause PJSIP to crash, resulting in a denial of service, or possibly execute arbitrary code. This issue only affected Ubuntu 16.04 LTS. CVE-2017-16872 Peter...
The vulnerability of the PJSIP multimedia library, related to buffer overflows in dynamic memory, allows attackers to execute arbitrary code on the target system.
The vulnerability of the PJSIP multimedia library is related to a boundary error during the decoding of STUN messages. Exploiting this vulnerability allows an attacker to send a specially crafted STUN message to the application, cause a buffer overflow, and execute arbitrary code on the target...
ROS-20221227-02
A vulnerability in the PJSIP multimedia library is related to a boundary error in the decoding of STUN messages. Exploitation of the vulnerability could allow an attacker acting remotely to transmit a specially crafted STUN message to an application, cause a heap buffer overflow, and execute...
UBUNTU-CVE-2022-23537
PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. Buffer overread is possible when parsing a specially crafted STUN message with unknown attribute. The vulnerability affects...