CVE-2018-25356

Name of the Vulnerable Software and Affected Versions SIPp versions 3.6 and earlier

Description A local buffer overflow exists in the handling of command-line arguments. Local attackers can cause the application to crash or execute arbitrary code by providing oversized input to the -3pcc, -i, or -log file parameters. This occurs because the strcpy() function in sipp.cpp writes data beyond the allocated buffer boundaries.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.