Lucene search

[email protected]CVE-2006-5231

HistoryOct 11, 2006 - 12:07 a.m.

CVE-2006-5231

2006-10-1100:07:00

[email protected]

web.nvd.nist.gov

cve-2006-5231

grandstream gxp-2000

voip

desktop phone

firmware

denial of service

nvd

vulnerability

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

7.1 High

AI Score

Confidence

High

0.047 Low

EPSS

Percentile

92.7%

JSON

Grandstream GXP-2000 VoIP Desktop Phone, firmware version 1.1.0.5, allows remote attackers to cause a denial of service (hang or reboot) via a large amount of ASCII data sent to port (1) 5060/UDP, (2) 5062/UDP, (3) 5064/UDP, (4) 5066/UDP, (5) 9876/UDP, or (6) 26789/UDP.

Affected configurations

NVD

Node

grandstreamgxp-2000Match1.1.0.5

CPENameOperatorVersion
grandstream:gxp-2000grandstream gxp-2000eq1.1.0.5

CPE	Name	Operator	Version
grandstream:gxp-2000	grandstream gxp-2000	eq	1.1.0.5

References

lists.grok.org.uk/pipermail/full-disclosure/2006-October/049876.html

secunia.com/advisories/22265

securityreason.com/securityalert/1718

www.grandstream.com/BETATEST/GXP2000_BT200/Release_Note_GXP2000-BT200_1.1.1.14.pdf

www.securityfocus.com/bid/20356

www.vupen.com/english/advisories/2006/3941

exchange.xforce.ibmcloud.com/vulnerabilities/29356

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

7.1 High

AI Score

Confidence

High

0.047 Low

EPSS

Percentile

92.7%

JSON

Related for CVE-2006-5231

cvelist1 nvd1