2 matches found
PT-2022-28070 · Unknown · Drachtio-Server
Name of the Vulnerable Software and Affected Versions: drachtio-server versions prior to 0.8.19 Description: An issue in the libsofia-sip fork allows remote attackers to cause a denial of service via a crafted UDP message, resulting in a heap-based buffer over-read due to an off-by-one error. Thi...
PT-2022-27678 · Unknown · Drachtio-Server
Name of the Vulnerable Software and Affected Versions: drachtio-server versions prior to 0.8.19 Description: The issue is a heap-based buffer over-read that occurs when a long Request-URI is sent in an INVITE request. This can be exploited via the Request-URI in an INVITE request. Recommendations...