Resiprocate : Security Vulnerabilities, CVEs,
The ConnectionBase::preparseNewBytes function in resip/stack/ConnectionBase.cxx in reSIProcate through 1.10.2 allows remote attackers to cause a denial of service (buffer overflow) or possibly execute arbitrary code when TLS communication is enabled.
Max CVSS
9.8
EPSS Score
81.07%
Published
2018-07-16
Updated
2022-04-18
Multiple unspecified vulnerabilities in ReSIProcate before 1.3.4 allow remote attackers to cause a denial of service (stack consumption) via unknown network traffic with a large "bytes-in-memory/bytes-on-wire ratio."
Max CVSS
7.8
EPSS Score
1.13%
Published
2008-07-17
Updated
2017-08-08
Buffer overflow in the ares_parse_a_reply function in the embedded ares library in ReSIProcate before 1.12.0 allows remote attackers to cause a denial of service (out-of-bounds-read) via a crafted DNS response.
Max CVSS
7.5
EPSS Score
0.24%
Published
2017-08-18
Updated
2019-12-11
The SdpContents::Session::Medium::parse function in resip/stack/SdpContents.cxx in reSIProcate 1.10.2 allows remote attackers to cause a denial of service (memory consumption) by triggering many media connections.
Max CVSS
7.5
EPSS Score
0.87%
Published
2017-07-22
Updated
2022-04-06
rutil/dns/DnsStub.cxx in ReSIProcate 1.3.2, as used by repro, allows remote attackers to cause a denial of service (daemon crash) via a SIP (1) INVITE or (2) OPTIONS message with a long domain name in a request URI, which triggers an assert error.
Max CVSS
5.0
EPSS Score
9.93%
Published
2008-07-18
Updated
2017-09-29
5 vulnerabilities found