PT-2024-26504 · Irontec+1 · Sngrep+1
Published
2024-05-29
·
Updated
2024-08-22
·
CVE-2024-35434
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Irontec Sngrep version 1.8.1
Description
The issue is a heap buffer overflow that can be triggered via the
rtp check packet function, located at /sngrep/src/rtp.c. This allows attackers to cause a Denial of Service (DoS) by sending a crafted SIP packet.Recommendations
For Irontec Sngrep version 1.8.1, consider disabling the
rtp check packet function as a temporary workaround until a patch is available. Restrict access to the /sngrep/src/rtp.c module to minimize the risk of exploitation. Avoid processing crafted SIP packets in the affected API endpoint until the issue is resolved.Exploit
Fix
DoS
Heap Based Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Debian
Sngrep