VYPR
Unrated severityNVD Advisory· Published Oct 4, 2013· Updated Jun 16, 2026

CVE-2013-2222

CVE-2013-2222

Description

Multiple stack-based buffer overflows in GNU ZRTPCPP before 3.2.0 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted ZRTP Hello packet to the (1) ZRtp::findBestSASType, (2) ZRtp::findBestAuthLen, (3) ZRtp::findBestCipher, (4) ZRtp::findBestHash, or (5) ZRtp::findBestPubKey functions.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

8
  • Wernerd/Zrtpcpp7 versions
    cpe:2.3:a:wernerd:zrtpcpp:*:*:*:*:*:*:*:*+ 6 more
    • cpe:2.3:a:wernerd:zrtpcpp:*:*:*:*:*:*:*:*range: <=3.2.1
    • cpe:2.3:a:wernerd:zrtpcpp:2.1.2:*:*:*:*:*:*:*
    • cpe:2.3:a:wernerd:zrtpcpp:2.2.0:*:*:*:*:*:*:*
    • cpe:2.3:a:wernerd:zrtpcpp:2.3.0:*:*:*:*:*:*:*
    • cpe:2.3:a:wernerd:zrtpcpp:3.0.0:alpha:*:*:*:*:*:*
    • cpe:2.3:a:wernerd:zrtpcpp:3.1.0:*:*:*:*:*:*:*
    • cpe:2.3:a:wernerd:zrtpcpp:3.2.0:*:*:*:*:*:*:*
  • GNU/ZRTPCPPllm-create
    Range: <3.2.0

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.