CVE-2018-16657

NONE EPSS 88.0%
Published Sep 7, 20187y ago · Modified Jun 17, 20262w ago
Find Similar
Published Sep 7, 2018 7y ago
Last Modified Jun 17, 2026 2w ago

Description

In Kamailio before 5.0.7 and 5.1.x before 5.1.4, a crafted SIP message with an invalid Via header causes a segmentation fault and crashes Kamailio. The reason is missing input validation in the crcitt_string_array core function for calculating a CRC hash for To tags. (An additional error is present in the check_via_address core function: this function also misses input validation.) This could result in denial of service and potentially the execution of arbitrary code.

Threat Intelligence

EPSS Exploit Probability
88.0% percentile
Exploit & Patch Status
Public Exploit Known
Patch Available

Weaknesses 1

CWE-476 NULL Pointer Dereference Memory Safety

Affected Products 4

VendorProductVersionRange
debiandebian_linux8.0any
debiandebian_linux9.0any
kamailiokamailio* <5.0.7
kamailiokamailio*≥5.1.0  –  <5.1.4

References 3

  • lists.debian.org https://lists.debian.org/debian-lts-announce/2018/09/msg00013.html
    Mailing ListThird Party Advisory
  • skalatan.de https://skalatan.de/blog/advisory-hw-2018-06
    ExploitPatchThird Party Advisory
  • debian.org https://www.debian.org/security/2018/dsa-4292
    Third Party Advisory

Remediation

  • skalatan.de https://skalatan.de/blog/advisory-hw-2018-06
    ExploitPatchThird Party Advisory