Segmentation fault in Kamailio - CVE-2018-14767
Published: August 9, 2018 / Updated: August 9, 2018
Vulnerability identifier: #VU14297
CSH Severity: High
CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber
CVE-ID: CVE-2018-14767
CWE-ID: CWE-20
Exploitation vector: Remote access
Exploit availability:
No public exploit available
Vendor: Kamailio
Affected software:
Kamailio
Kamailio
Detailed vulnerability description
The vulnerability allows a remote attacker to cause DoS condition on the target system.
The vulnerability exists due to insufficient input validation in the "build_res_buf_from_sip_req" core function. A remote unauthenticated attacker can supply a specially crafted SIP message with a double "To" header and an empty "To" tag, trigger segmentation fault and cause the service to crash.
Successful exploitation of this vulnerability may also result in remote code execution.
How to mitigate CVE-2018-14767
The vulnerability has been addressed in the versions 5.0.7, 5.1.4.