QwikSec

Security Database

CVE

CWE

Training

CVE-2018-12584

Published: Jul 16, 2018

Modified: Aug 5, 2024

PUBLISHED

Description

The ConnectionBase::preparseNewBytes function in resip/stack/ConnectionBase.cxx in reSIProcate through 1.10.2 allows remote attackers to cause a denial of service (buffer overflow) or possibly execute arbitrary code when TLS communication is enabled.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

exploit

x_refsource_EXPLOIT-DB

https://github.com/resiprocate/resiprocate/commit/2cb291191c93c7c4e371e22cb89805a5b31d6608

x_refsource_CONFIRM

[debian-lts-announce] 20180724 [SECURITY] [DLA 1439-1] resiprocate security update

mailing-list

x_refsource_MLIST

20180808 [CVE-2018-12584] Heap overflow vulnerability in reSIProcate through 1.10.2

mailing-list

x_refsource_BUGTRAQ

https://packetstormsecurity.com/files/148856/reSIProcate-1.10.2-Heap-Overflow.html

x_refsource_MISC

http://joachimdezutter.webredirect.org/advisory.html

x_refsource_MISC

[debian-lts-announce] 20211229 [SECURITY] [DLA 2865-1] resiprocate security update

mailing-list

x_refsource_MLIST

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.