vendor:
UNIStim IP Softphone
by:
Cyrill Brunschwiler
7.5
CVSS
HIGH
Buffer Overflow
Unknown
CWE
Product Name: UNIStim IP Softphone
Affected Version From: Unknown
Affected Version To: Unknown
Patch Exists: NO
Related CWE: Unknown
CPE: a:nortel:unistim_ip_softphone
Platforms Tested:
Unknown
Nortel Networks UNIStim IP Softphone Buffer Overflow Vulnerability
The Nortel Networks UNIStim IP Softphone application is prone to a buffer-overflow vulnerability. This is due to the application's failure to properly bounds-check user-supplied data before copying it to a memory buffer that is not sufficiently sized. An attacker can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition.
Mitigation:
No known mitigation or remediation steps are available at this time.