Full title: VoIPmonitor 27.6 Buffer Overflow Exploit 
Category: web applications
Platform: php
A buffer overflow was identified in the VoIPmonitor live sniffer feature. The description variable in the function save_packet_sql is defined as a fixed length array of 1024 characters. The description is set to the value of a SIP request or response line. By setting a long request or response line VoIPmonitor will trigger a buffer overflow.

# 0day.today @ http://0day.today/