Family: Misc. --> Category: infos
eStara SoftPhone SDP Data Attribute Buffer Overflow Vulnerability Vulnerability Scan
Vulnerability Scan Summary
Checks version number of eStara SoftPhone
Detailed Explanation for this Vulnerability Test
The remote SIP client is prone to a buffer overflow vulnerability.
The version of SoftPhone installed on the remote host reportedly fails
to properly handle SIP packets with long 'a=' lines in the SDP data.
An unauthenticated remote attacker may be able to exploit this flaw to
overflow a buffer and execute arbitrary code on the remote host.
See also :
Upgrade to eStara SoftPhone version 126.96.36.199 or later.
High / CVSS Base Score : 7
Click HERE for more information and discussions on this network vulnerability scan.