Estara » Softphone : Security Vulnerabilities, CVEs, CVSS score >= 5

CVE-2006-0739

eStara SIP softphone allows remote attackers to cause a denial of service (crash) via an INVITE request with a Content-Length field that has more than 9 digits.
Max CVSS
5.0
EPSS Score
1.83%
Published
2006-02-17
Updated
2018-10-19

CVE-2006-0738

Multiple format string vulnerabilities in eStara SIP softphone allow remote attackers to cause a denial of service (hang) via SIP INVITE requests with format string specifiers in the SDP session description, as demonstrated using (1) the field name, (2) the o field (owner/creator and session identifier), or (3) the m field (media name and transport address).
Max CVSS
5.0
EPSS Score
3.92%
Published
2006-02-17
Updated
2018-10-19

CVE-2006-0737

eStara SIP softphone allows remote attackers to cause a denial of service (crash) via a SIP OPTIONS request with a negative Expires field.
Max CVSS
5.0
EPSS Score
5.28%
Published
2006-02-17
Updated
2018-10-19

CVE-2006-0189

Buffer overflow in eStara Softphone 3.0.1.14 through 3.0.1.46 allows remote attackers to execute arbitrary code via a long attribute (aka "a") field in the SDP data of a SIP packet on UDP port 5060.
Max CVSS
7.5
EPSS Score
20.71%
Published
2006-01-13
Updated
2018-10-19
4 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close