Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:39253
HistoryFeb 14, 2023 - 5:57 a.m.

Heap-Based Buffer Overflow

2023-02-1405:57:28
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
18
heap-based buffer overflow
stun
pjnath
pjsua-lib

0.002 Low

EPSS

Percentile

53.4%

ring:sid is vulnerable to Heap-Based Buffer Overflow. An attacker is able to cause buffer over read by parsing a specially crafted STUN message with unknown attribute via multiple functions. This only affects applications using STUN including PJNATH and PJSUA-LIB.