CVE-2005-4466

Interaction SIP Proxy <3.0.011 - Buffer Overflow

Title source: llm

Description

Heap-based buffer overflow in the SIPParser function in i3sipmsg.dll in Interaction SIP Proxy before 3.0.011 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a REGISTER request with a SPI version number that contains a large number of space or tab characters.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Behrang Fouladi · perldosmultiple

https://www.exploit-db.com/exploits/26922

View Code ZIP pw:eip

References (8)

[Patch, Vendor Advisory] http://secunia.com/advisories/18197

[Third Party Advisory] http://securityreason.com/securityalert/281

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/23823

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/419989/100/0/threaded

[Exploit] http://www.securityfocus.com/bid/16001

[Third Party Advisory] http://www.vupen.com/english/advisories/2005/3029

[Exploit, Vendor Advisory] http://www.hat-squad.com/en/000171.html

[Third Party Advisory, VDB Entry] http://securitytracker.com/id?1015392

Scores

EPSS 0.2682

EPSS Percentile 96.4%

Details

Status published

Products (1)

interactive_intelligence/interaction_sip_proxy 3.0.010

Published Dec 22, 2005

Tracked Since Feb 18, 2026