Lucene search

[email protected]CVE-2007-3444

HistoryJun 27, 2007 - 12:30 a.m.

CVE-2007-3444

2007-06-2700:30:00

[email protected]

web.nvd.nist.gov

cve-2007-3444

research in motion

blackberry

denial of service

sip

security vulnerability

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

6.7 Medium

AI Score

Confidence

High

0.048 Low

EPSS

Percentile

92.8%

JSON

The Research in Motion BlackBerry 7270 with 4.0 SP1 Bundle 83 allows remote attackers to cause a denial of service (blocked call reception) via a malformed SIP invite message, possibly related to multiple format string specifiers in the From field, a spoofed source IP address, and limitations of the function stack frame.

Affected configurations

NVD

Node

rimblackberry_softwareMatch4.0sp1_bundle83

rimblackberry_7270

CPENameOperatorVersion
rim:blackberry_softwarerim blackberry softwareeq4.0
rim:blackberry_7270rim blackberry 7270eq*

CPE	Name	Operator	Version
rim:blackberry_software	rim blackberry software	eq	4.0
rim:blackberry_7270	rim blackberry 7270	eq	*

References

osvdb.org/37648

secunia.com/advisories/25824

www.blackberry.com/btsc/articles/225/KB12700_f.SAL_Public.html

www.kb.cert.org/vuls/id/785257

www.securityfocus.com/bid/24548

www.sipera.com/index.php?action=resources%2Cthreat_advisory&tid=211&

exchange.xforce.ibmcloud.com/vulnerabilities/35074

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

6.7 Medium

AI Score

Confidence

High

0.048 Low

EPSS

Percentile

92.8%

JSON

Related for CVE-2007-3444

cvelist1 prion1 nvd1