Polycom SoundPoint IP 301 Unique Identifier

2006-10-04T10:04:30
ID OSVDB:29572
Type osvdb
Reporter OSVDB
Modified 2006-10-04T10:04:30

Description

Vulnerability Description

Polycom SoundPoint IP 301 VoIP phones contain a flaw that may lead to an unauthorized information disclosure.  The issue is triggered when a remote attacker connects to TCP Port 42 which causes the phone to output a unique string. This may allow a person to uniquely identify a phone, regardless of the phone number or IP address associated with it.

Additionally, there may be a concern over the unique string being the challenge to a 'magic password' allowing backdoor access.

Short Description

Polycom SoundPoint IP 301 VoIP phones contain a flaw that may lead to an unauthorized information disclosure.  The issue is triggered when a remote attacker connects to TCP Port 42 which causes the phone to output a unique string. This may allow a person to uniquely identify a phone, regardless of the phone number or IP address associated with it.

Additionally, there may be a concern over the unique string being the challenge to a 'magic password' allowing backdoor access.

References:

Vendor URL: http://www.polycom.com/home/ Secunia Advisory ID:22266 Related OSVDB ID: 29571 Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2006-10/0090.html Keyword: TCP Port 42 ISS X-Force ID: 29350 CVE-2006-5233 Bugtraq ID: 20351