CVE-2013-2222

Public Exploit

Description

Multiple stack-based buffer overflows in GNU ZRTPCPP before 3.2.0 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted ZRTP Hello packet to the (1) ZRtp::findBestSASType, (2) ZRtp::findBestAuthLen, (3) ZRtp::findBestCipher, (4) ZRtp::findBestHash, or (5) ZRtp::findBestPubKey functions.

References

Link	Tags
http://lists.opensuse.org/opensuse-updates/2013-10/msg00053.html	vendor advisory
https://github.com/wernerd/ZRTPCPP/commit/4654f330317c9948bb61d138eb24d49690ca4637	patch
http://blog.azimuthsecurity.com/2013/06/attacking-crypto-phones-weaknesses-in.html	exploit
http://secunia.com/advisories/54998	third party advisory vendor advisory
http://lists.opensuse.org/opensuse-updates/2013-10/msg00052.html	vendor advisory
http://security.gentoo.org/glsa/glsa-201309-13.xml	vendor advisory
http://seclists.org/oss-sec/2013/q2/638	mailing list
http://secunia.com/advisories/53818	third party advisory vendor advisory

Frequently Asked Questions

What is the severity of CVE-2013-2222?: CVE-2013-2222 has been scored as a medium severity vulnerability.
How to fix CVE-2013-2222?: To fix CVE-2013-2222, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2013-2222 being actively exploited in the wild?: It is possible that CVE-2013-2222 is being exploited or will be exploited in a near future based on public information. According to its EPSS score, there is a ~4% probability that this vulnerability will be exploited by malicious actors in the next 30 days.

Description

Category

CWE-119 – Improper Restriction of Operations within the Bounds of a Memory Buffer

References

Frequently Asked Questions