Lucene search
PRIOn knowledge basePRION:CVE-2022-27255HistoryAug 01, 2022 - 12:15 p.m.
Stack overflow
2022-08-0112:15:00
PRIOn knowledge base
www.prio-n.com
4
In Realtek eCos RSDK 1.5.7p1 and MSDK 4.9.4p1, the SIP ALG function that rewrites SDP data has a stack-based buffer overflow. This allows an attacker to remotely execute code without authentication via a crafted SIP packet that contains malicious SDP data.
| CPE | Name | Operator | Version |
|---|---|---|---|
| ecos_msdk_firmware | eq | 4.9.4-p1 | |
| ecos_rsdk_firmware | eq | 1.5.7-p1 |
Related
githubexploit
githubexploit
Exploit for Improper Input Validation in Realtek Ecos Rsdk Firmware
2022-08-27 15:56:44
Exploit for Improper Input Validation in Realtek Ecos Rsdk Firmware
2022-07-06 17:29:04
attackerkb
attackerkb
CVE-2022-27255
2022-08-01 00:00:00
cvelist
cvelist
CVE-2022-27255
2022-08-01 11:43:25
nvd
nvd
CVE-2022-27255
2022-08-01 12:15:08
checkpoint_advisories
checkpoint_advisories
Realtek eCos Stack Buffer Overflow (CVE-2022-27255)
2022-09-01 00:00:00
cve
cve
CVE-2022-27255
2022-08-01 12:15:08
mssecure
mssecure
mmpc
mmpc