Shannon Baseband Negative-Size Memcpy / Out-Of-Bounds Read

May 11, 2023, 3:25 p.m. |

There is a negative-size memcpy (heap overflow) when decoding the body of SIP multipart messages. According to debug strings in the modem image, this functionality is implemented in IMSPL_SipFragDecode.

baseband body debug decoding messages modem out-of-bounds overflow sip size strings

Visit resource

More from packetstormsecurity.com / Packet Storm

Packet Storm New Exploits For April, 2024 19 hours ago | packetstormsecurity.com

april archive exploits packet +2

Ubuntu Security Notice USN-6760-1 19 hours ago | packetstormsecurity.com

attacker data denial of service file +11

Kernel Live Patch Security Notice LSN-0103-1 19 hours ago | packetstormsecurity.com

attacker con data expose +20

Microsoft PlayReady Cryptography Weakness 19 hours ago | packetstormsecurity.com

attack beyond cryptography extraction +15

Online Tours And Travels Management System 1.0 SQL Injection 19 hours ago | packetstormsecurity.com

injection management management system sql +6

Qantas App Glitch Sees Boarding Passes Fly To Other Accounts 20 hours ago | packetstormsecurity.com

accounts app data loss flaw +4

Adobe Adds Content Credentials And Firefly To Bug Bounty Program 20 hours ago | packetstormsecurity.com

adobe bounty bug bug bounty +5

Google Boosts Bug Bounty Payouts Tenfold In Mobile App Security Push 20 hours ago | packetstormsecurity.com

app bounty bug bug bounty +6

London Drugs Pharmacy Closes All Stores To Respond To Cyber Incident 20 hours ago | packetstormsecurity.com

britain cyber cyber incident data loss +8

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote

View on infosec-jobs.com

Premium Hub - CoE: Business Process Senior Consultant, SAP Security Role and Authorisations & GRC

@ SAP | Dublin 24, IE, D24WA02

View on infosec-jobs.com

Product Security Response Engineer

@ Intel | CRI - Belen, Heredia

View on infosec-jobs.com

Application Security Architect

@ Uni Systems | Brussels, Brussels, Belgium

View on infosec-jobs.com

Sr Product Security Engineer

@ ServiceNow | Hyderabad, India

View on infosec-jobs.com

Analyst, Cybersecurity & Technology (Initial Application Deadline May 20th, Final Deadline May 31st)

@ FiscalNote | United Kingdom (UK)

View on infosec-jobs.com

View more jobs

all InfoSec news

Shannon Baseband Negative-Size Memcpy / Out-Of-Bounds Read

More from packetstormsecurity.com / Packet Storm

Jobs in InfoSec / Cybersecurity

Social Engineer For Reverse Engineering Exploit Study

Premium Hub - CoE: Business Process Senior Consultant, SAP Security Role and Authorisations & GRC

Product Security Response Engineer

Application Security Architect

Sr Product Security Engineer

Analyst, Cybersecurity & Technology (Initial Application Deadline May 20th, Final Deadline May 31st)