Resiprocate : Security Vulnerabilities, CVEs, CVSS score >= 2

CVE-2018-12584

The ConnectionBase::preparseNewBytes function in resip/stack/ConnectionBase.cxx in reSIProcate through 1.10.2 allows remote attackers to cause a denial of service (buffer overflow) or possibly execute arbitrary code when TLS communication is enabled.
Max CVSS
9.8
EPSS Score
81.07%
Published
2018-07-16
Updated
2022-04-18

CVE-2017-11521

The SdpContents::Session::Medium::parse function in resip/stack/SdpContents.cxx in reSIProcate 1.10.2 allows remote attackers to cause a denial of service (memory consumption) by triggering many media connections.
Max CVSS
7.5
EPSS Score
0.87%
Published
2017-07-22
Updated
2022-04-06

CVE-2017-9454

Buffer overflow in the ares_parse_a_reply function in the embedded ares library in ReSIProcate before 1.12.0 allows remote attackers to cause a denial of service (out-of-bounds-read) via a crafted DNS response.
Max CVSS
7.5
EPSS Score
0.24%
Published
2017-08-18
Updated
2019-12-11

CVE-2008-3210

rutil/dns/DnsStub.cxx in ReSIProcate 1.3.2, as used by repro, allows remote attackers to cause a denial of service (daemon crash) via a SIP (1) INVITE or (2) OPTIONS message with a long domain name in a request URI, which triggers an assert error.
Max CVSS
5.0
EPSS Score
9.93%
Published
2008-07-18
Updated
2017-09-29

CVE-2008-3199

Multiple unspecified vulnerabilities in ReSIProcate before 1.3.4 allow remote attackers to cause a denial of service (stack consumption) via unknown network traffic with a large "bytes-in-memory/bytes-on-wire ratio."
Max CVSS
7.8
EPSS Score
1.13%
Published
2008-07-17
Updated
2017-08-08
5 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close