Lucene search

[email protected]CVE-2007-4753

HistorySep 08, 2007 - 12:17 a.m.

CVE-2007-4753

2007-09-0800:17:00

[email protected]

web.nvd.nist.gov

thomson

st 2030

sip phone

denial of service

vulnerability

cve-2007-4753

nvd

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.6 Medium

AI Score

Confidence

High

0.185 Low

EPSS

Percentile

96.3%

JSON

The Thomson ST 2030 SIP phone with software 1.52.1 allows remote attackers to cause a denial of service (device hang) via (1) an empty SIP message or (2) a SIP INVITE message with a malformed To header, different vectors than CVE-2007-4553.

Affected configurations

NVD

Node

thomsonst_2030_sip_phoneMatch1.52.1firmware

CPENameOperatorVersion
thomson:st_2030_sip_phonethomson st 2030 sip phoneeq1.52.1

CPE	Name	Operator	Version
thomson:st_2030_sip_phone	thomson st 2030 sip phone	eq	1.52.1

References

lists.grok.org.uk/pipermail/full-disclosure/2007-August/065458.html

lists.grok.org.uk/pipermail/full-disclosure/2007-August/065478.html

secunia.com/advisories/26587

securityreason.com/securityalert/3104

securitytracker.com/id?1018611

securitytracker.com/id?1018616

exchange.xforce.ibmcloud.com/vulnerabilities/36286

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.6 Medium

AI Score

Confidence

High

0.185 Low

EPSS

Percentile

96.3%

JSON

Related for CVE-2007-4753

prion2 nvd2 cvelist2 cve1