-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


Format String Vulnerability in Ekiga [MU-200702-01]
February 20, 2007

http://labs.musecurity.com/advisories.html

Affected Products/Versions:

Ekiga up to 2.0.5

Product Overview:

http://www.gnomemeeting.org

"Ekiga (formely known as GnomeMeeting) is an open source VoIP and video
conferencing application for GNOME. Ekiga uses both the H.323 and SIP protocols.
It supports many audio and video codecs, and is interoperable with other SIP
compliant software and also with Microsoft NetMeeting. "

Vulnerability Details:

A format string vulnerability exists during the notification of an incoming 
call.  A remote user can exploit this vulnerability by sending a specially
crafted Q.931 SETUP packet.

Vendor Response / Solution:

Update to Ekiga version 2.0.5 , available from http://www.gnomemeeting.org

History:
01/25/07 - First contact with vendor
01/25/07 - Vendor acknowledges vulnerability
02/20/07 - Advisory released

Credit:

This vulnerability was discovered by the Mu Security research team.

http://labs.musecurity.com/pgpkey.txt

Mu Security offers a new class of security analysis system, delivering a
rigorous and streamlined methodology for verifying the robustness and security
readiness of any IP-based product or application. Founded by the pioneers of
intrusion detection and prevention technology, Mu Security is backed by
preeminent venture capital firms that include Accel Partners, Benchmark
Capital and DAG Ventures. The company is headquartered in Sunnyvale, CA. For
more information, visit the company's website at http://www.musecurity.com. 

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.2 (Darwin)

iD8DBQFF20ceMl+docYeP+YRAtoTAJ9LYy1/YPNmA4F++1NZNKEgeplQuQCglfL7
oJ0bOfEka31nXMjAKIZ8HvE=
=X3vu
-----END PGP SIGNATURE-----