CVE-2003-0761 Information

Description

Buffer overflow in the get_msg_text of chan_sip.c in the Session Initiation Protocol (SIP) protocol implementation for Asterisk releases before August 15 2003 allows remote attackers to execute arbitrary code via certain (1) MESSAGE or (2) INFO requests.

Reference

http://www.atstake.com/research/advisories/2003/a090403-1.txt