CVE-2006-2923 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2006-2923
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2006-2923

Description: The iax_net_read function in the iaxclient open source library, as used in multiple products including (a) LoudHush 1.3.6, (b) IDE FISK 1.35 and earlier, (c) Kiax 0.8.5 and earlier, (d) DIAX, (e) Ziaxphone, (f) IAX Phone, (g) X-lite, (h) MediaX, (i) Extreme Networks ePhone, and (j) iaxComm before 1.2.0, allows remote attackers to execute arbitrary code via crafted IAX 2 (IAX2) packets with truncated (1) full frames or (2) mini-frames, which are detected in a length check but still processed, leading to buffer overflows related to negative length values.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/27047 SAID Secunia Advisory: SA20466 Secunia Advisory: SA20623 Secunia Advisory: SA20560 Secunia Advisory: SA20567 Secunia Advisory: SA20900 MISC http://www.coresecurity.com/common/showdoc.php?idx=548&idxseccion=10 GENTOO http://www.gentoo.org/security/en/glsa/glsa-200606-30.xml CONFIRM http://sourceforge.net/project/shownotes.php?release_id=423099&group_id=131960 http://iaxclient.sourceforge.net/iaxcomm/ http://www.loudhush.ro/changelog.txt BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/436638/100/0/threaded BID 18307

Return to the previous page.