Lucene search
MitreCVE-2008-1249HistoryMar 10, 2008 - 5:44 p.m.
CVE-2008-1249
2008-03-1017:44:00
CWE-20
mitre
web.nvd.nist.gov
20
cve-2008-1249
snom
sip phone
denial of service
remote attack
application crash
call logs corruption
CVSS2
9.4
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:C/A:C
AI Score
6.8
Confidence
High
EPSS
0.004
Percentile
74.0%
snomControl.swf in the central phone server for the Snom 320 SIP Phone allows remote attackers to cause a denial of service (application crash and corruption of call logs) via a "'); (double quote, quote, close parenthesis, semicolon) sequence in the “Call a number” field.
Affected configurations
Node
snom320_sip_phone
| Vendor | Product | Version | CPE |
|---|---|---|---|
| snom | 320_sip_phone | * | cpe:2.3:h:snom:320_sip_phone:*:*:*:*:*:*:*:* |
Related
nvd
nvd
CVE-2008-1249
2008-03-10 17:44:00
cvelist
cvelist
CVE-2008-1249
2008-03-10 17:00:00
prion
prion
Memory corruption
2008-03-10 17:44:00
CVSS2
9.4
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:C/A:C
AI Score
6.8
Confidence
High
EPSS
0.004
Percentile
74.0%
Related for CVE-2008-1249