Vulnerabilities > Ekiga > Ekiga > 3.2.4
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2019-04-22 | CVE-2011-1830 | Code Injection vulnerability in Ekiga Ekiga versions before 3.3.0 attempted to load a module from /tmp/ekiga_test.so. | 6.8 |
2014-09-29 | CVE-2012-5621 | Improper Input Validation vulnerability in Ekiga lib/engine/components/opal/opal-call.cpp in ekiga before 4.0.0 allows remote attackers to cause a denial of service (crash) via an OPAL connection with a party name that contains invalid UTF-8 strings. | 5.0 |
2014-05-23 | CVE-2013-1864 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in multiple products The Portable Tool Library (aka PTLib) before 2.10.10, as used in Ekiga before 4.0.1, does not properly detect recursion during entity expansion, which allows remote attackers to cause a denial of service (memory and CPU consumption) via a crafted PXML document containing a large number of nested entity references, aka a "billion laughs attack." | 4.3 |