Vulnerabilities > CVE-2005-4466 - Remote Heap Corruption Denial Of Service vulnerability in Interactive Intelligence Interaction SIP Proxy 3.0.010

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
interactive-intelligence
exploit available

Summary

Heap-based buffer overflow in the SIPParser function in i3sipmsg.dll in Interaction SIP Proxy before 3.0.011 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a REGISTER request with a SPI version number that contains a large number of space or tab characters.

Vulnerable Configurations

Part Description Count
Application
Interactive_Intelligence
1

Exploit-Db

descriptionInteraction SIP Proxy 3.0 Remote Heap Corruption Denial Of Service Vulnerability. CVE-2005-4466. Dos exploits for multiple platform
idEDB-ID:26922
last seen2016-02-03
modified2005-12-21
published2005-12-21
reporterBehrang Fouladi
sourcehttps://www.exploit-db.com/download/26922/
titleInteraction SIP Proxy 3.0 - Remote Heap Corruption Denial of Service Vulnerability