Openh323 ProjectCVEs & Vulnerabilities
2 CVEs affecting Openh323 Project products, tracked from the National Vulnerability Database, with CVSS/EPSS scores and exploitation status.
2 CVEs→ All vendors
Most Affected Products
openh323 1pwlib 1
CVE-2007-4924MEDIUMpoc
The Open Phone Abstraction Library (opal), as used by (1) Ekiga before 2.0.10 and (2) OpenH323 before 2.2.4, allows remote attackers to cause a denial of service (crash) via an invalid Content-Length header field in Session Initiation Protocol (SIP) packets, which causes a \0 byte to be written to an "attacker-controlled address."
9 Oct 2007
5.0
CVSS
CVE-2004-0097CRITICAL
Multiple vulnerabilities in PWLib before 1.6.0 allow remote attackers to cause a denial of service and possibly execute arbitrary code, as demonstrated by the NISCC/OUSPG PROTOS test suite for the H.225 protocol.
3 Mar 2004
10.0
CVSS
← PrevPage 1 / 1Next →