[vuln.sg] AGEphone "sipd.dll" SIP Packet Handling Buffer Overflow

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: [vuln.sg] AGEphone "sipd.dll" SIP Packet Handling Buffer Overflow
From: vulnpost-remove@xxxxxxx
Date: 25 Jul 2006 02:26:51 -0000
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm

AGEphone "sipd.dll" SIP Packet Handling Buffer Overflow

by Tan Chew Keong
Release Date: 2006-07-25

Summary
-------
A vulnerability has been found in AGEphone. When exploited, the vulnerability 
allows execution of arbitrary code with privileges of the AGEphone user via a 
single specially-crafted UDP SIP packet.

Tested Versions
---------------
AGEphone for Windows version 1.24 and 1.38.1

Details
-------
http://vuln.sg/agephone1381-en.html

Prev by Date: [vuln.sg] TurboZIP ZIP Repair Buffer Overflow Vulnerability
Next by Date: LinksCaffe 3.0 SQL injection/Command Execution Vulnerabilties
Previous by thread: [vuln.sg] TurboZIP ZIP Repair Buffer Overflow Vulnerability
Next by thread: LinksCaffe 3.0 SQL injection/Command Execution Vulnerabilties
Index(es):
- Date
- Thread