CVSS: 7.5EPSS: 22%CPEs: 2EXPL: 1CVE-2007-4924 – OpenH323 Opal SIP Protocol - Remote Denial of Service
https://notcve.org/view.php?id=CVE-2007-4924
08 Oct 2007 — The Open Phone Abstraction Library (opal), as used by (1) Ekiga before 2.0.10 and (2) OpenH323 before 2.2.4, allows remote attackers to cause a denial of service (crash) via an invalid Content-Length header field in Session Initiation Protocol (SIP) packets, which causes a \0 byte to be written to an "attacker-controlled address." Open Phone Abstraction Library (opal), como la usada en (1) Ekiga anterior a 2.0.10 y (2) OpenH323 anterior a 2.2.4, permite a atacantes remotos provocar una denegación de servici... • https://www.exploit-db.com/exploits/9240 • CWE-20: Improper Input Validation •
CVSS: 10.0EPSS: 27%CPEs: 1EXPL: 0CVE-2004-0097
https://notcve.org/view.php?id=CVE-2004-0097
19 Feb 2004 — Multiple vulnerabilities in PWLib before 1.6.0 allow remote attackers to cause a denial of service and possibly execute arbitrary code, as demonstrated by the NISCC/OUSPG PROTOS test suite for the H.225 protocol. Múltiples vulnerabilidades en PWLib anteriores a 1.6.0 permiten a atacantes remotos causar una denegación de servicio y posiblemente ejecutar código arbitrario, como se demostrón mediante la suite de pruebas del protocolo H.225 NISCC/OUSPG PROTOS. • http://www.cert.org/advisories/CA-2004-01.html •