QwikSec

Security Database

CVE

CWE

Training

CVE-2006-2923

Published: Jun 9, 2006

Modified: Aug 7, 2024

PUBLISHED

Description

The iax_net_read function in the iaxclient open source library, as used in multiple products including (a) LoudHush 1.3.6, (b) IDE FISK 1.35 and earlier, (c) Kiax 0.8.5 and earlier, (d) DIAX, (e) Ziaxphone, (f) IAX Phone, (g) X-lite, (h) MediaX, (i) Extreme Networks ePhone, and (j) iaxComm before 1.2.0, allows remote attackers to execute arbitrary code via crafted IAX 2 (IAX2) packets with truncated (1) full frames or (2) mini-frames, which are detected in a length check but still processed, leading to buffer overflows related to negative length values.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

vdb-entry

x_refsource_VUPEN

vdb-entry

x_refsource_VUPEN

iaxclient-truncated-frame-bo(27047)

vdb-entry

x_refsource_XF

http://www.loudhush.ro/changelog.txt

x_refsource_CONFIRM

third-party-advisory

x_refsource_SECUNIA

http://iaxclient.sourceforge.net/iaxcomm/

x_refsource_CONFIRM

third-party-advisory

x_refsource_SECUNIA

http://www.coresecurity.com/common/showdoc.php?idx=548&idxseccion=10

x_refsource_MISC

vdb-entry

x_refsource_VUPEN

third-party-advisory

x_refsource_SECUNIA

third-party-advisory

x_refsource_SECUNIA

vdb-entry

x_refsource_BID

vdb-entry

x_refsource_VUPEN

20060609 CORE-2006-0327: IAXclient truncated frames vulnerabilities

mailing-list

x_refsource_BUGTRAQ

vendor-advisory

x_refsource_GENTOO

http://sourceforge.net/project/shownotes.php?release_id=423099&group_id=131960

x_refsource_CONFIRM

third-party-advisory

x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.