Xu Biang discovered that missing input sanitising in Sofia-SIP, a SIP User-Agent library could result in denial of service.