CVE-2024-3120 | irontec sngrep up to 1.8.0 SIP Header src/sip.c sip_validate_packet Content-Length/Warning stack-based overflow

Posted by Angelo Barbosa | Apr 10, 2024 | CVE

A vulnerability, which was classified as critical, was found in irontec sngrep up to 1.8.0. This affects the function sip_validate_packet of the file src/sip.c of the component SIP Header Handler. The manipulation of the argument Content-Length/Warning leads to stack-based buffer overflow.

This vulnerability is uniquely identified as CVE-2024-3120. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-3120 | irontec sngrep up to 1.8.0 SIP Header src/sip.c sip_validate_packet Content-Length/Warning stack-based overflow

Related Posts

CVE-2023-40393 | Apple macOS Photos Privilege Escalation

CVE-2023-47352 | Technicolor TC8715D WPA2 information disclosure

CVE-2023-6347 | Google Chrome prior 119.0.6045.199 Mojo use after free

CVE-2023-24460 | Intel GPA Software Installer prior 2023.3 default permission (intel-sa-00831)