Search

Find a vulnerability

Search criteria Use this form to refine search results.
Full-text search supports keyword queries with ranking and filtering.
You can combine vendor, product, and sources to narrow results.
Enable “Apply ordering” to sort by date instead of relevance.

    2 vulnerabilities by loudhush

    CVE-2006-2923 (GCVE-0-2006-2923)

    Vulnerability from nvd – Published: 2006-06-09 10:00 – Updated: 2024-08-07 18:06
    VLAI
    Summary
    The iax_net_read function in the iaxclient open source library, as used in multiple products including (a) LoudHush 1.3.6, (b) IDE FISK 1.35 and earlier, (c) Kiax 0.8.5 and earlier, (d) DIAX, (e) Ziaxphone, (f) IAX Phone, (g) X-lite, (h) MediaX, (i) Extreme Networks ePhone, and (j) iaxComm before 1.2.0, allows remote attackers to execute arbitrary code via crafted IAX 2 (IAX2) packets with truncated (1) full frames or (2) mini-frames, which are detected in a length check but still processed, leading to buffer overflows related to negative length values.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.vupen.com/english/advisories/2006/2286 vdb-entryx_refsource_VUPEN
    http://www.vupen.com/english/advisories/2006/2285 vdb-entryx_refsource_VUPEN
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://www.loudhush.ro/changelog.txt x_refsource_CONFIRM
    http://secunia.com/advisories/20567 third-party-advisoryx_refsource_SECUNIA
    http://iaxclient.sourceforge.net/iaxcomm/ x_refsource_CONFIRM
    http://secunia.com/advisories/20900 third-party-advisoryx_refsource_SECUNIA
    http://www.coresecurity.com/common/showdoc.php?id… x_refsource_MISC
    http://www.vupen.com/english/advisories/2006/2180 vdb-entryx_refsource_VUPEN
    http://secunia.com/advisories/20623 third-party-advisoryx_refsource_SECUNIA
    http://secunia.com/advisories/20466 third-party-advisoryx_refsource_SECUNIA
    http://www.securityfocus.com/bid/18307 vdb-entryx_refsource_BID
    http://www.vupen.com/english/advisories/2006/2284 vdb-entryx_refsource_VUPEN
    http://www.securityfocus.com/archive/1/436638/100… mailing-listx_refsource_BUGTRAQ
    http://www.gentoo.org/security/en/glsa/glsa-20060… vendor-advisoryx_refsource_GENTOO
    http://sourceforge.net/project/shownotes.php?rele… x_refsource_CONFIRM
    http://secunia.com/advisories/20560 third-party-advisoryx_refsource_SECUNIA
    Date Public
    2006-06-06 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T18:06:27.221Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "ADV-2006-2286",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2006/2286"
              },
              {
                "name": "ADV-2006-2285",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2006/2285"
              },
              {
                "name": "iaxclient-truncated-frame-bo(27047)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27047"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www.loudhush.ro/changelog.txt"
              },
              {
                "name": "20567",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/20567"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://iaxclient.sourceforge.net/iaxcomm/"
              },
              {
                "name": "20900",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/20900"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://www.coresecurity.com/common/showdoc.php?idx=548\u0026idxseccion=10"
              },
              {
                "name": "ADV-2006-2180",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2006/2180"
              },
              {
                "name": "20623",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/20623"
              },
              {
                "name": "20466",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/20466"
              },
              {
                "name": "18307",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/18307"
              },
              {
                "name": "ADV-2006-2284",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2006/2284"
              },
              {
                "name": "20060609 CORE-2006-0327: IAXclient truncated frames vulnerabilities",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/436638/100/0/threaded"
              },
              {
                "name": "GLSA-200606-30",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_GENTOO",
                  "x_transferred"
                ],
                "url": "http://www.gentoo.org/security/en/glsa/glsa-200606-30.xml"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://sourceforge.net/project/shownotes.php?release_id=423099\u0026group_id=131960"
              },
              {
                "name": "20560",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/20560"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2006-06-06T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "The iax_net_read function in the iaxclient open source library, as used in multiple products including (a) LoudHush 1.3.6, (b) IDE FISK 1.35 and earlier, (c) Kiax 0.8.5 and earlier, (d) DIAX, (e) Ziaxphone, (f) IAX Phone, (g) X-lite, (h) MediaX, (i) Extreme Networks ePhone, and (j) iaxComm before 1.2.0, allows remote attackers to execute arbitrary code via crafted IAX 2 (IAX2) packets with truncated (1) full frames or (2) mini-frames, which are detected in a length check but still processed, leading to buffer overflows related to negative length values."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2018-10-18T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "ADV-2006-2286",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2006/2286"
            },
            {
              "name": "ADV-2006-2285",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2006/2285"
            },
            {
              "name": "iaxclient-truncated-frame-bo(27047)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27047"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www.loudhush.ro/changelog.txt"
            },
            {
              "name": "20567",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/20567"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://iaxclient.sourceforge.net/iaxcomm/"
            },
            {
              "name": "20900",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/20900"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://www.coresecurity.com/common/showdoc.php?idx=548\u0026idxseccion=10"
            },
            {
              "name": "ADV-2006-2180",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2006/2180"
            },
            {
              "name": "20623",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/20623"
            },
            {
              "name": "20466",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/20466"
            },
            {
              "name": "18307",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/18307"
            },
            {
              "name": "ADV-2006-2284",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2006/2284"
            },
            {
              "name": "20060609 CORE-2006-0327: IAXclient truncated frames vulnerabilities",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/436638/100/0/threaded"
            },
            {
              "name": "GLSA-200606-30",
              "tags": [
                "vendor-advisory",
                "x_refsource_GENTOO"
              ],
              "url": "http://www.gentoo.org/security/en/glsa/glsa-200606-30.xml"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://sourceforge.net/project/shownotes.php?release_id=423099\u0026group_id=131960"
            },
            {
              "name": "20560",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/20560"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2006-2923",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "The iax_net_read function in the iaxclient open source library, as used in multiple products including (a) LoudHush 1.3.6, (b) IDE FISK 1.35 and earlier, (c) Kiax 0.8.5 and earlier, (d) DIAX, (e) Ziaxphone, (f) IAX Phone, (g) X-lite, (h) MediaX, (i) Extreme Networks ePhone, and (j) iaxComm before 1.2.0, allows remote attackers to execute arbitrary code via crafted IAX 2 (IAX2) packets with truncated (1) full frames or (2) mini-frames, which are detected in a length check but still processed, leading to buffer overflows related to negative length values."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "ADV-2006-2286",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2006/2286"
                },
                {
                  "name": "ADV-2006-2285",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2006/2285"
                },
                {
                  "name": "iaxclient-truncated-frame-bo(27047)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27047"
                },
                {
                  "name": "http://www.loudhush.ro/changelog.txt",
                  "refsource": "CONFIRM",
                  "url": "http://www.loudhush.ro/changelog.txt"
                },
                {
                  "name": "20567",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/20567"
                },
                {
                  "name": "http://iaxclient.sourceforge.net/iaxcomm/",
                  "refsource": "CONFIRM",
                  "url": "http://iaxclient.sourceforge.net/iaxcomm/"
                },
                {
                  "name": "20900",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/20900"
                },
                {
                  "name": "http://www.coresecurity.com/common/showdoc.php?idx=548\u0026idxseccion=10",
                  "refsource": "MISC",
                  "url": "http://www.coresecurity.com/common/showdoc.php?idx=548\u0026idxseccion=10"
                },
                {
                  "name": "ADV-2006-2180",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2006/2180"
                },
                {
                  "name": "20623",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/20623"
                },
                {
                  "name": "20466",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/20466"
                },
                {
                  "name": "18307",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/18307"
                },
                {
                  "name": "ADV-2006-2284",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2006/2284"
                },
                {
                  "name": "20060609 CORE-2006-0327: IAXclient truncated frames vulnerabilities",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/436638/100/0/threaded"
                },
                {
                  "name": "GLSA-200606-30",
                  "refsource": "GENTOO",
                  "url": "http://www.gentoo.org/security/en/glsa/glsa-200606-30.xml"
                },
                {
                  "name": "http://sourceforge.net/project/shownotes.php?release_id=423099\u0026group_id=131960",
                  "refsource": "CONFIRM",
                  "url": "http://sourceforge.net/project/shownotes.php?release_id=423099\u0026group_id=131960"
                },
                {
                  "name": "20560",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/20560"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2006-2923",
        "datePublished": "2006-06-09T10:00:00.000Z",
        "dateReserved": "2006-06-09T00:00:00.000Z",
        "dateUpdated": "2024-08-07T18:06:27.221Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2006-2923 (GCVE-0-2006-2923)

    Vulnerability from cvelistv5 – Published: 2006-06-09 10:00 – Updated: 2024-08-07 18:06
    VLAI
    Summary
    The iax_net_read function in the iaxclient open source library, as used in multiple products including (a) LoudHush 1.3.6, (b) IDE FISK 1.35 and earlier, (c) Kiax 0.8.5 and earlier, (d) DIAX, (e) Ziaxphone, (f) IAX Phone, (g) X-lite, (h) MediaX, (i) Extreme Networks ePhone, and (j) iaxComm before 1.2.0, allows remote attackers to execute arbitrary code via crafted IAX 2 (IAX2) packets with truncated (1) full frames or (2) mini-frames, which are detected in a length check but still processed, leading to buffer overflows related to negative length values.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.vupen.com/english/advisories/2006/2286 vdb-entryx_refsource_VUPEN
    http://www.vupen.com/english/advisories/2006/2285 vdb-entryx_refsource_VUPEN
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://www.loudhush.ro/changelog.txt x_refsource_CONFIRM
    http://secunia.com/advisories/20567 third-party-advisoryx_refsource_SECUNIA
    http://iaxclient.sourceforge.net/iaxcomm/ x_refsource_CONFIRM
    http://secunia.com/advisories/20900 third-party-advisoryx_refsource_SECUNIA
    http://www.coresecurity.com/common/showdoc.php?id… x_refsource_MISC
    http://www.vupen.com/english/advisories/2006/2180 vdb-entryx_refsource_VUPEN
    http://secunia.com/advisories/20623 third-party-advisoryx_refsource_SECUNIA
    http://secunia.com/advisories/20466 third-party-advisoryx_refsource_SECUNIA
    http://www.securityfocus.com/bid/18307 vdb-entryx_refsource_BID
    http://www.vupen.com/english/advisories/2006/2284 vdb-entryx_refsource_VUPEN
    http://www.securityfocus.com/archive/1/436638/100… mailing-listx_refsource_BUGTRAQ
    http://www.gentoo.org/security/en/glsa/glsa-20060… vendor-advisoryx_refsource_GENTOO
    http://sourceforge.net/project/shownotes.php?rele… x_refsource_CONFIRM
    http://secunia.com/advisories/20560 third-party-advisoryx_refsource_SECUNIA
    Date Public
    2006-06-06 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T18:06:27.221Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "ADV-2006-2286",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2006/2286"
              },
              {
                "name": "ADV-2006-2285",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2006/2285"
              },
              {
                "name": "iaxclient-truncated-frame-bo(27047)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27047"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www.loudhush.ro/changelog.txt"
              },
              {
                "name": "20567",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/20567"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://iaxclient.sourceforge.net/iaxcomm/"
              },
              {
                "name": "20900",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/20900"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://www.coresecurity.com/common/showdoc.php?idx=548\u0026idxseccion=10"
              },
              {
                "name": "ADV-2006-2180",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2006/2180"
              },
              {
                "name": "20623",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/20623"
              },
              {
                "name": "20466",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/20466"
              },
              {
                "name": "18307",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/18307"
              },
              {
                "name": "ADV-2006-2284",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2006/2284"
              },
              {
                "name": "20060609 CORE-2006-0327: IAXclient truncated frames vulnerabilities",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/436638/100/0/threaded"
              },
              {
                "name": "GLSA-200606-30",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_GENTOO",
                  "x_transferred"
                ],
                "url": "http://www.gentoo.org/security/en/glsa/glsa-200606-30.xml"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://sourceforge.net/project/shownotes.php?release_id=423099\u0026group_id=131960"
              },
              {
                "name": "20560",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/20560"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2006-06-06T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "The iax_net_read function in the iaxclient open source library, as used in multiple products including (a) LoudHush 1.3.6, (b) IDE FISK 1.35 and earlier, (c) Kiax 0.8.5 and earlier, (d) DIAX, (e) Ziaxphone, (f) IAX Phone, (g) X-lite, (h) MediaX, (i) Extreme Networks ePhone, and (j) iaxComm before 1.2.0, allows remote attackers to execute arbitrary code via crafted IAX 2 (IAX2) packets with truncated (1) full frames or (2) mini-frames, which are detected in a length check but still processed, leading to buffer overflows related to negative length values."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2018-10-18T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "ADV-2006-2286",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2006/2286"
            },
            {
              "name": "ADV-2006-2285",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2006/2285"
            },
            {
              "name": "iaxclient-truncated-frame-bo(27047)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27047"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www.loudhush.ro/changelog.txt"
            },
            {
              "name": "20567",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/20567"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://iaxclient.sourceforge.net/iaxcomm/"
            },
            {
              "name": "20900",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/20900"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://www.coresecurity.com/common/showdoc.php?idx=548\u0026idxseccion=10"
            },
            {
              "name": "ADV-2006-2180",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2006/2180"
            },
            {
              "name": "20623",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/20623"
            },
            {
              "name": "20466",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/20466"
            },
            {
              "name": "18307",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/18307"
            },
            {
              "name": "ADV-2006-2284",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2006/2284"
            },
            {
              "name": "20060609 CORE-2006-0327: IAXclient truncated frames vulnerabilities",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/436638/100/0/threaded"
            },
            {
              "name": "GLSA-200606-30",
              "tags": [
                "vendor-advisory",
                "x_refsource_GENTOO"
              ],
              "url": "http://www.gentoo.org/security/en/glsa/glsa-200606-30.xml"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://sourceforge.net/project/shownotes.php?release_id=423099\u0026group_id=131960"
            },
            {
              "name": "20560",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/20560"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2006-2923",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "The iax_net_read function in the iaxclient open source library, as used in multiple products including (a) LoudHush 1.3.6, (b) IDE FISK 1.35 and earlier, (c) Kiax 0.8.5 and earlier, (d) DIAX, (e) Ziaxphone, (f) IAX Phone, (g) X-lite, (h) MediaX, (i) Extreme Networks ePhone, and (j) iaxComm before 1.2.0, allows remote attackers to execute arbitrary code via crafted IAX 2 (IAX2) packets with truncated (1) full frames or (2) mini-frames, which are detected in a length check but still processed, leading to buffer overflows related to negative length values."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "ADV-2006-2286",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2006/2286"
                },
                {
                  "name": "ADV-2006-2285",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2006/2285"
                },
                {
                  "name": "iaxclient-truncated-frame-bo(27047)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27047"
                },
                {
                  "name": "http://www.loudhush.ro/changelog.txt",
                  "refsource": "CONFIRM",
                  "url": "http://www.loudhush.ro/changelog.txt"
                },
                {
                  "name": "20567",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/20567"
                },
                {
                  "name": "http://iaxclient.sourceforge.net/iaxcomm/",
                  "refsource": "CONFIRM",
                  "url": "http://iaxclient.sourceforge.net/iaxcomm/"
                },
                {
                  "name": "20900",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/20900"
                },
                {
                  "name": "http://www.coresecurity.com/common/showdoc.php?idx=548\u0026idxseccion=10",
                  "refsource": "MISC",
                  "url": "http://www.coresecurity.com/common/showdoc.php?idx=548\u0026idxseccion=10"
                },
                {
                  "name": "ADV-2006-2180",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2006/2180"
                },
                {
                  "name": "20623",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/20623"
                },
                {
                  "name": "20466",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/20466"
                },
                {
                  "name": "18307",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/18307"
                },
                {
                  "name": "ADV-2006-2284",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2006/2284"
                },
                {
                  "name": "20060609 CORE-2006-0327: IAXclient truncated frames vulnerabilities",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/436638/100/0/threaded"
                },
                {
                  "name": "GLSA-200606-30",
                  "refsource": "GENTOO",
                  "url": "http://www.gentoo.org/security/en/glsa/glsa-200606-30.xml"
                },
                {
                  "name": "http://sourceforge.net/project/shownotes.php?release_id=423099\u0026group_id=131960",
                  "refsource": "CONFIRM",
                  "url": "http://sourceforge.net/project/shownotes.php?release_id=423099\u0026group_id=131960"
                },
                {
                  "name": "20560",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/20560"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2006-2923",
        "datePublished": "2006-06-09T10:00:00.000Z",
        "dateReserved": "2006-06-09T00:00:00.000Z",
        "dateUpdated": "2024-08-07T18:06:27.221Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }