OpenH323 select() Bitmap Remote Buffer Overflow Vulnerability
BID:12341
Info
OpenH323 select() Bitmap Remote Buffer Overflow Vulnerability
| Bugtraq ID: | 12341 |
| Class: | Boundary Condition Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Jan 24 2005 12:00AM |
| Updated: | Jan 24 2005 12:00AM |
| Credit: | Discovery is credited to 3APA3A <[email protected]>. |
| Vulnerable: |
OpenH323 OpenH323 Gatekeeper 2.2 OpenH323 OpenH323 Gatekeeper 2.0.9 |
| Not Vulnerable: |
OpenH323 OpenH323 Gatekeeper 2.2.1 |
Discussion
OpenH323 select() Bitmap Remote Buffer Overflow Vulnerability
OpenH323 Gatekeeper is prone to a remote buffer overflow due to implementation of the select() system call. This issue could be exploited to cause a denial of service or potentially execute arbitrary code.
OpenH323 Gatekeeper is prone to a remote buffer overflow due to implementation of the select() system call. This issue could be exploited to cause a denial of service or potentially execute arbitrary code.
Exploit / POC
OpenH323 select() Bitmap Remote Buffer Overflow Vulnerability
The researcher responsible for discovering this issue has developed exploit code to leverage this vulnerability. The exploit code has not been released to the public.
The researcher responsible for discovering this issue has developed exploit code to leverage this vulnerability. The exploit code has not been released to the public.
Solution / Fix
OpenH323 select() Bitmap Remote Buffer Overflow Vulnerability
Solution:
This vulnerability was addressed in OpenH323 Gatekeeper 2.2.1:
OpenH323 OpenH323 Gatekeeper 2.0.9
OpenH323 OpenH323 Gatekeeper 2.2
Solution:
This vulnerability was addressed in OpenH323 Gatekeeper 2.2.1:
OpenH323 OpenH323 Gatekeeper 2.0.9
-
OpenH323 OpenH323 2.2.1
http://www.gnugk.org/h323download.html
OpenH323 OpenH323 Gatekeeper 2.2
-
OpenH323 OpenH323 2.2.1
http://www.gnugk.org/h323download.html
References
OpenH323 select() Bitmap Remote Buffer Overflow Vulnerability
References:
References: