[Forgot Password]
Login  Register Subscribe

24436

 
 

131815

 
 

115190

 
 

909

 
 

90025

 
 

140

Paid content will be excluded from the download.


Download | Alert*
OVAL

DSA-4267-1 kamailio -- kamailio

ID: oval:org.secpod.oval:def:603482Date: (C)2018-08-09   (M)2018-10-08
Class: PATCHFamily: unix




Henning Westerholt discovered a flaw related to the To header processing in kamailio, a very fast, dynamic and configurable SIP server. Missing input validation in the build_res_buf_from_sip_req function could result in denial of service and potentially the execution of arbitrary code.

Platform:
Debian 9.x
Product:
kamailio
Reference:
DSA-4267-1
CVE-2018-14767
CVE    1
CVE-2018-14767
CPE    5
cpe:/a:kamailio:kamailio
cpe:/a:kamailio:kamailio:4.3.4
cpe:/o:debian:debian_linux:9.x
cpe:/o:debian:debian_linux:9.0
...

© SecPod Technologies