Vulnerabilities > CVE-2005-4466 - Remote Heap Corruption Denial Of Service vulnerability in Interactive Intelligence Interaction SIP Proxy 3.0.010
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Heap-based buffer overflow in the SIPParser function in i3sipmsg.dll in Interaction SIP Proxy before 3.0.011 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a REGISTER request with a SPI version number that contains a large number of space or tab characters.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description | Interaction SIP Proxy 3.0 Remote Heap Corruption Denial Of Service Vulnerability. CVE-2005-4466. Dos exploits for multiple platform |
id | EDB-ID:26922 |
last seen | 2016-02-03 |
modified | 2005-12-21 |
published | 2005-12-21 |
reporter | Behrang Fouladi |
source | https://www.exploit-db.com/download/26922/ |
title | Interaction SIP Proxy 3.0 - Remote Heap Corruption Denial of Service Vulnerability |
References
- http://secunia.com/advisories/18197
- http://securityreason.com/securityalert/281
- http://securitytracker.com/id?1015392
- http://www.hat-squad.com/en/000171.html
- http://www.securityfocus.com/archive/1/419989/100/0/threaded
- http://www.securityfocus.com/bid/16001
- http://www.vupen.com/english/advisories/2005/3029
- https://exchange.xforce.ibmcloud.com/vulnerabilities/23823