{"edition": 1, "title": "Multiple Vendor VoIP Phone SIP-Notify-Messages Spoofing", "bulletinFamily": "software", "published": "2005-07-06T01:49:20", "lastseen": "2017-04-28T13:20:14", "history": [], "modified": "2005-07-06T01:49:20", "reporter": "OSVDB", "hash": "3c1157d8ea0e82f3f75f750740fb477f85ca372ab97f03aafead9c1dcf84e92f", "viewCount": 0, "href": "https://vulners.com/osvdb/OSVDB:17838", "description": "# No description provided by the source\n\n## References:\nSecurity Tracker: 1014407\nSecurity Tracker: 1014406\nOther Advisory URL: http://pentest.tele-consulting.com/advisories/05_07_06_voip-phones.txt\nOther Advisory URL: http://www.securiteam.com/securitynews/5MP0C00GAM.html\nMail List Post: http://archives.neohapsis.com/archives/bugtraq/2005-07/0132.html\nMail List Post: http://archives.neohapsis.com/archives/bugtraq/2005-07/0072.html\nMail List Post: http://archives.neohapsis.com/archives/bugtraq/2005-07/0113.html\nMail List Post: http://archives.neohapsis.com/archives/bugtraq/2005-07/0277.html\nISS X-Force ID: 21260\nGeneric Exploit URL: http://www.securiteam.com/exploits/5EP0D0AGAW.html\n[CVE-2005-2182](https://vulners.com/cve/CVE-2005-2182)\n[CVE-2005-2181](https://vulners.com/cve/CVE-2005-2181)\n", "affectedSoftware": [], "type": "osvdb", "hashmap": [{"key": "affectedSoftware", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "bulletinFamily", "hash": "f9fa10ba956cacf91d7878861139efb9"}, {"key": "cvelist", "hash": "fa015f4dff4c9e9840fad24f5d5a4542"}, {"key": "cvss", "hash": "26769fd423968d45be7383413e2552f1"}, {"key": "description", "hash": "88c3c0e68bad3272215c434d44c1f5c6"}, {"key": "href", "hash": "50a7def72972089375576480807281b9"}, {"key": "modified", "hash": "7d0153d72e090a8287f9b33d5b809fb6"}, {"key": "objectVersion", "hash": "56765472680401499c79732468ba4340"}, {"key": "published", "hash": "7d0153d72e090a8287f9b33d5b809fb6"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "955b328dc7cd615c13af5464c9183464"}, {"key": "title", "hash": "b5f23be766fa034c44912282101220f1"}, {"key": "type", "hash": "1327ac71f7914948578f08c54f772b10"}], "references": [], "objectVersion": "1.2", "enchantments": {"score": {"value": 6.0, "vector": "NONE", "modified": "2017-04-28T13:20:14"}, "dependencies": {"references": [{"type": "cve", "idList": ["CVE-2005-2181", "CVE-2005-2182"]}], "modified": "2017-04-28T13:20:14"}, "vulnersScore": 6.0}, "cvss": {"vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/", "score": 5.0}, "cvelist": ["CVE-2005-2182", "CVE-2005-2181"], "id": "OSVDB:17838"}

{"cve": [{"lastseen": "2019-05-29T18:08:14", "bulletinFamily": "NVD", "description": "Cisco 7940/7960 Voice over IP (VoIP) phones do not properly check the Call-ID, branch, and tag values in a NOTIFY message to verify a subscription, which allows remote attackers to spoof messages such as the \"Messages waiting\" message.", "modified": "2017-07-11T01:32:00", "id": "CVE-2005-2181", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2005-2181", "published": "2005-07-11T04:00:00", "title": "CVE-2005-2181", "type": "cve", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:P/A:N"}}, {"lastseen": "2019-05-29T18:08:14", "bulletinFamily": "NVD", "description": "Grandstream BudgeTone (BT) 100 Voice over IP (VoIP) phones do not properly check the Call-ID, branch, and tag values in a NOTIFY message to verify a subscription, which allows remote attackers to spoof messages such as the \"Messages waiting\" message.", "modified": "2017-07-11T01:32:00", "id": "CVE-2005-2182", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2005-2182", "published": "2005-07-11T04:00:00", "title": "CVE-2005-2182", "type": "cve", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:P/A:N"}}]}