OpenSER SMS Handling module Remote Buffer Overflow Vulnerability

Bugtraq ID:	21800
Class:	Boundary Condition Error
CVE:	CVE-2006-6876
Remote:	Yes
Local:	No
Published:	Dec 28 2006 12:00AM
Updated:	Nov 15 2007 12:37AM
Credit:	[email protected] is credited with the discovery of this vulnerability
Vulnerable:	OpenSER OpenSER 1.0.1 OpenSER OpenSER 1.0 OpenSER OpenSER 0.9.5 OpenSER OpenSER 0.9.4
Not Vulnerable:	OpenSER OpenSER 1.1

OpenSER SMS Handling module Remote Buffer Overflow Vulnerability

The OpenSER SMS module is prone to a remote buffer-overflow vulnerability because the application fails to properly bounds-check user-supplied input before copying it to an insufficiently sized memory buffer.

Exploiting this issue allows attackers to execute arbitrary code in the context of the user running the affected application. Failed exploit attempts will result in a denial of service.

OpenSER SMS versions prior to 1.1.0 are reported vulnerable.

OpenSER SMS Handling module Remote Buffer Overflow Vulnerability

Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].

OpenSER SMS Handling module Remote Buffer Overflow Vulnerability

References:

• OpenSER SIP Server Homepage (OpenSER)
  
• Re: SMS handling OpenSER remote code executing ([email protected])
  
• SMS handling OpenSER remote code executing ([email protected])