Ekiga < 4.0.1 ptlib XML Expansion Recursion DoS

Medium Nessus Plugin ID 66033


The version of Ekiga installed on the remote host may be affected by a denial of service vulnerability.


According to the version in its SIP banner, the installed version of Ekiga on the remote host is earlier than 4.0.1 and thus contains a version of the ptlib library that fails to conduct proper length checks during XML expansion. A remote, unauthenticated attacker could exploit this issue to consume extreme amounts of CPU and memory through the use of a specially crafted XML document.


Upgrade to Ekiga 4.0.1 or later.

See Also



Plugin Details

Severity: Medium

ID: 66033

File Name: ekiga_4_0_1.nasl

Version: 1.4

Type: remote

Published: 2013/04/19

Updated: 2018/11/15

Dependencies: 64457

Configuration: Enable paranoid mode

Risk Information

Risk Factor: Medium

CVSS v2.0

Base Score: 4.3

Temporal Score: 3.2

Vector: CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:P

Temporal Vector: CVSS2#E:U/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/a:ekiga:ekiga

Required KB Items: ekiga/sip_detected, Settings/ParanoidReport

Exploit Available: false

Exploit Ease: No known exploits are available

Patch Publication Date: 2013/02/21

Vulnerability Publication Date: 2013/03/15

Reference Information

CVE: CVE-2013-1864

BID: 58520