VOIP: SIP Negative Content Length

This signature detects attempts to exploit a known vulnerability against SIP client. A successful attack can result in a denial-of-service condition. .

Extended Description

NCH Software Office Intercom is prone to a remote denial-of-service vulnerability because it fails to properly handle specially crafted SIP 'INVITE' requests. Exploiting this issue allows remote attackers to cause a denial-of-service due to a NULL-pointer dereference. Due to the nature of this issue, remote code execution may be possible; this has not been confirmed. Office Intercom 5.20 is vulnerable; other versions may also be affected.

Affected Products

Nch_software office_intercom

References

BugTraq: 45049

URL: http://www.nch.com.au/oi/

Short Name
VOIP:SIP:LIMITS:SIP-NEG-CNT-LEN
Severity
Minor
Recommended
False
Recommended Action
None
Category
VOIP
Keywords
Content Length Negative SIP bid:45049
Release Date
12/30/2010
Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version
3375
False Positive
Unknown
Vendors

Nch_software

Found a potential security threat?