Published: 18/01/2017 Updated: 03/08/2017
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9
VMScore: 446
Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N

Vulnerability Summary

The Bzrtp library (aka libbzrtp) 1.0.x prior to 1.0.4 allows man-in-the-middle malicious users to conduct spoofing attacks by leveraging a missing HVI check on DHPart2 packet reception.

Affected Products

Vendor Product Versions
Bzrtp ProjectBzrtp1.0.0, 1.0.2, 1.0.3

Vendor Advisories

Debian Bug report logs - #859277 bzrtp: CVE-2016-6271: missing HVI check on DHPart2 packet reception Package: src:bzrtp; Maintainer for src:bzrtp is Debian VoIP Team <pkg-voip-maintainers@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, 1 Apr 2017 17:30:01 UTC Severity: impo ...

Github Repositories

CVE-2016-6271 CVE-2016-6271 impacts libbzrtp, which is a ZRTP library developped by Belledonne Communications This library is embedded in end-user applications, for example linphone, which is available as an Android app on Play store Current version 327 embeds a version of libbzrtp shall not be vulnerable to CVE-2016-6271 TLDR; Build vulnerable ZRTP agent cd vulnerable-b