Vulnerabilities > Resiprocate > Resiprocate > 1.9.0

DATE CVE VULNERABILITY TITLE RISK
2018-07-16 CVE-2018-12584 Classic Buffer Overflow vulnerability in multiple products
The ConnectionBase::preparseNewBytes function in resip/stack/ConnectionBase.cxx in reSIProcate through 1.10.2 allows remote attackers to cause a denial of service (buffer overflow) or possibly execute arbitrary code when TLS communication is enabled.
network
low complexity
resiprocate debian CWE-120
critical
 9.8
9.8
2017-08-18 CVE-2017-9454 Out-of-bounds Read vulnerability in Resiprocate
Buffer overflow in the ares_parse_a_reply function in the embedded ares library in ReSIProcate before 1.12.0 allows remote attackers to cause a denial of service (out-of-bounds-read) via a crafted DNS response.
network
low complexity
resiprocate CWE-125
7.5
7.5