Ekiga versions before 3.3.0 attempted to load a module from /tmp/ekiga_test.so.
CVSS Score
5.7
EPSS Score
0.002
Published
2019-04-22
lib/engine/components/opal/opal-call.cpp in ekiga before 4.0.0 allows remote attackers to cause a denial of service (crash) via an OPAL connection with a party name that contains invalid UTF-8 strings.
CVSS Score
5.0
EPSS Score
0.014
Published
2014-09-29
The Portable Tool Library (aka PTLib) before 2.10.10, as used in Ekiga before 4.0.1, does not properly detect recursion during entity expansion, which allows remote attackers to cause a denial of service (memory and CPU consumption) via a crafted PXML document containing a large number of nested entity references, aka a "billion laughs attack."
CVSS Score
4.3
EPSS Score
0.036
Published
2014-05-23