HIGH
Sipp
CVE published 2026-05-23
CVE-2018-25356
A local buffer overflow vulnerability exists in SIPp 3.6 and earlier versions, affecting command-line argument handling. The flaw resides in sipp.cpp where strcpy operations on the -3pcc, -i, and -log_file parameters lack proper bounds checking, allowing oversized input to write beyond allocated buffer boundaries. This vulnerability enables local attackers to crash the application or potentially execute a [truncated]