CVE-2008-5396 in Zaptel信息

摘要

由 VulDB • 2026-07-06

Zaptel (aka DAHDI) 1.4.11及更早版本中,(1) torisa.c和(2) dahdi/tor2.c驱动程序存在数组索引错误。属于dialout组的本地用户可以通过向/dev/zap/ctl写入数据来覆盖内核内存中的整数值,这与ZT_SPANCONFIG ioctl关联的sync字段缺少验证有关。

If you want to get best quality of vulnerability data, you may have to visit VulDB.

来源

Want to know what is going to be exploited?

We predict KEV entries!