Lucene search

[email protected]CVE-2006-5233

HistoryOct 11, 2006 - 1:07 a.m.

CVE-2006-5233

2006-10-1101:07:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2006-5233

polycom

soundpoint ip 301

voip

firmware

denial of service

nvd

7.7 High

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.014 Low

EPSS

Percentile

86.1%

JSON

Polycom SoundPoint IP 301 VoIP Desktop Phone, firmware version 1.4.1.0040, allows remote attackers to cause a denial of service (reboot) via (1) a long URL sent to the HTTP daemon and (2) unspecified manipulations as demonstrated by the Nessus http_fingerprinting_hmap.nasl script.

CPENameOperatorVersion
polycom:soundpoint_ip_301polycom soundpoint ip 301eq1.4.1.0040

CPE	Name	Operator	Version
polycom:soundpoint_ip_301	polycom soundpoint ip 301	eq	1.4.1.0040

References

archives.neohapsis.com/archives/fulldisclosure/2006-10/0090.html

secunia.com/advisories/22266

www.securityfocus.com/bid/20351

exchange.xforce.ibmcloud.com/vulnerabilities/29350

7.7 High

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.014 Low

EPSS

Percentile

86.1%

JSON