Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5
CVSSv2

CVE-2007-4924

Published: 08/10/2007 Updated: 15/10/2018
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
VMScore: 505
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Subscribe to Ekiga

Vulnerability Summary

The Open Phone Abstraction Library (opal), as used by (1) Ekiga prior to 2.0.10 and (2) OpenH323 prior to 2.2.4, allows remote malicious users to cause a denial of service (crash) via an invalid Content-Length header field in Session Initiation Protocol (SIP) packets, which causes a \0 byte to be written to an "attacker-controlled address."

Vulnerable Product Search on Vulmon Subscribe to Product

ekiga ekiga

openh323 project openh323

Vendor Advisories

Debian CVElist Bug Report Logs: opal: CVE-2007-4924 remote denial of service
Debian Bug report logs - #454141 opal: CVE-2007-4924 remote denial of service Package: opal; Maintainer for opal is Debian VoIP Team <pkg-voip-maintainers@listsaliothdebianorg>; Reported by: Nico Golde <nion@debianorg> Date: Mon, 3 Dec 2007 13:15:01 UTC Severity: grave Tags: patch, security Found in version 22 ...
Ubuntu Security Notice: opal vulnerability
Jose Miguel Esparza discovered that certain SIP headers were not correctly validated A remote attacker could send a specially crafted packet to an application linked against opal (eg Ekiga) causing it to crash, leading to a denial of service ...

Exploits

Exploit DB: OpenH323 Opal SIP Protocol - Remote Denial of Service
#!/usr/bin/env python # # OpenH323 Opal SIP Protocol Remote Denial of Service Vulnerability (CVE-2007-4924) # # opal228_dospy by Jose Miguel Esparza # 2007-10-08 S21sec labs import sys,socket if len(sysargv) != 3: sysexit("Usage: " + sysargv[0] + " target_host target_port\n") target = sysargv[1] targetPort = int(sysargv[2]) malformedReques ...
Exploit DB: OpenH323 Opal SIP Denial Of Service
OpenH323 Opal SIP protocol remote denial of service exploit ...

References

CWE-20http://mail.gnome.org/archives/ekiga-list/2007-September/msg00103.htmlhttp://openh323.cvs.sourceforge.net/openh323/opal/src/sip/sippdu.cxx?r1=2.83.2.19&r2=2.83.2.20https://bugzilla.redhat.com/show_bug.cgi?id=296371http://www.redhat.com/support/errata/RHSA-2007-0957.htmlhttp://secunia.com/advisories/27118http://secunia.com/advisories/27128http://secunia.com/advisories/27129http://www.mandriva.com/security/advisories?name=MDKSA-2007:205http://lists.opensuse.org/opensuse-security-announce/2007-10/msg00006.htmlhttp://www.securityfocus.com/bid/25955http://www.securitytracker.com/id?1018776http://secunia.com/advisories/27271http://secunia.com/advisories/27524http://www.ubuntu.com/usn/usn-562-1http://secunia.com/advisories/28380http://osvdb.org/41637http://www.s21sec.com/avisos/s21sec-037-en.txthttp://www.vupen.com/english/advisories/2007/3413http://www.vupen.com/english/advisories/2007/3414https://www.exploit-db.com/exploits/9240https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11398http://www.securityfocus.com/archive/1/482120/30/4500/threadedhttps://bugs.debian.org/cgi-bin/bugreport.cgi?bug=454141https://usn.ubuntu.com/562-1/https://nvd.nist.govhttps://www.exploit-db.com/exploits/9240/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
encryptionCVE-2024-4331CVE-2024-26925arbitrary codeCVE-2006-4304CVE-2024-25458CVE-2024-27077reflected XSSCVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook