header-logo
Suggest Exploit
vendor:
AGEphone
by:
SecurityFocus
7.5
CVSS
HIGH
Buffer Overflow
119
CWE
Product Name: AGEphone
Affected Version From: 1.24
Affected Version To: 1.38.1
Patch Exists: Yes
Related CWE: N/A
CPE: a:ageet_communications:agephone
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2006

AGEphone Remote Buffer Overflow Vulnerability

AGEphone is prone to a remote buffer-overflow vulnerability. Specifically, this issue presents itself when the application handles a malicious SIP (Session Initiation Protocol) packet. Two malicious SIP packets have been identified, one with approximately 68 bytes and the other with approximately 48 bytes.

Mitigation:

Upgrade to the latest version of AGEphone
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/19148/info

AGEphone is prone to a remote buffer-overflow vulnerability.

Specifically, this issue presents itself when the application handles a malicious SIP (Session Initiation Protocol) packet.

AGEphone versions 1.24 and 1.38.1 are reported vulnerable; other versions may be affected as well.

SIP/AAAAAAAA[approx-68-bytes]AAAAAA 1 A
From: test
To: test

Or:

SIP/A 1 AAAAAAAA[approx-48-bytes]AAAAAA
From: test
To: test

Navigation

Suggest Exploit

Services By CQR