TippingPoint Zero Day Initiative
 

AOL AIM SIPFoundry sipXtapi RTCP Processing Heap Overflow Vulnerability

ZDI-08-097: June 10th, 2008

Affected Vendors

Affected Products

Vulnerability Details

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of AOL AIM. Successful exploitation requires the victim to accept a Video Messaging session with the attacker.

The specific flaw exists in the SIP protocol implementation library, sipXtapi.dll. If a malformed RTCP sender report packet is sent, a memory corruption occurs due to a signedness error allowing the execution of arbitrary code.

Vendor Response

America Online states:

Fixed in AIM 6.8 client, version 6.8.7.7.


Disclosure Timeline

    2007-12-11 - Vulnerability reported to vendor
    2008-06-10 - Coordinated public release of advisory

Credit

This vulnerability was discovered by:
    wushi of team509