CVE-2008-1304

Multiple cross-site scripting XSS vulnerabilities in WordPress 2.3.2 allow remote attackers to inject arbitrary web script or HTML via the 1 inviteemail parameter in an invite action to wp-admin/users.php and the 2 to parameter in a sent action to wp-admin/invites.php...

Code injection

Cisco IP Phone 7940 with firmware P0S3-08-7-00 allows remote attackers to cause a denial of service "486 Busy" responses or device reboot via a sequence of SIP INVITE transactions in which the Request-URI lacks a user name, a different vulnerability than CVE-2007-4459...

Nokia N95电话SIP取消INVITE消息远程拒绝服务漏洞

Nokia N95是一款流行的电话设备。 Nokia N95包含的SIP电话客户端处理SIP消息存在问题，远程攻击者可以利用漏洞对设备进行拒绝服务攻击。 提交特殊的SIP消息序列可导致设备进入不稳定状态。消息序列包含两个不同的SIP对话框，如果第一个初始化INVITE事务而立即关闭，那么第二个事务初始化一个普通的INVITE事务可导致触发此漏洞。设备需要重新启动获得正常功能。 Nokia N95 Phone 目前没有解决方案提供： http://www.nseries.com/products/n95/ perl nokiav12.pl dstIP username SourceIp...

cisco7940-dos.txt

Cisco 7940 Denial of Service Vulnerability Hardware: Cisco 7940 SIP Phone Severity: High – Denial of Service Software: Affected version: P0S3-08-7-00 Other Versions: May be Notification: Vulnerability found: 30 August 2007 Contact Cisco: 31 August 2007 Tracked issue: 11 September 2007 Vulnerabili...

nokia-dos.txt

Nokia N95 cellphone remote DoS using the SIP Stack Severity: High – Denial of Service Hardware: Nokia N95 Firmware: Tested version: Nokia RM-159 V 12.0.013 Notification: Vulnerability found: 11 September 2007 Contact Nokia Support: 12 September 2007 / None reply Contact Nokia Security Support: 19...

[Full-disclosure] Cisco Phone 7940 remote DOS

Cisco 7940 Denial of Service Vulnerability Hardware: Cisco 7940 SIP Phone Severity: High – Denial of Service Software: Affected version: P0S3-08-7-00 Other Versions: May be Notification: Vulnerability found: 30 August 2007 Contact Cisco: 31 August 2007 Tracked issue: 11 September 2007 Vulnerabili...

sip-fraud.txt

SIP Digest Access Authentication RELAY-ATTACK for Toll-Fraud In this post, we would like to inform about a potential Authentication vulnerability in SIP, where all SIP equipments using Digest Access Authentication which can issue re-INVITEs are vulnerable. The problem lies in an attack scenario,...

Buffer overflow

Buffer overflow in the SIP parser on the Grandstream HT-488 0.1 allows remote attackers to cause a denial of service device crash via a crafted SIP INVITE message...

Design/Logic Flaw

The Vonage Motorola Phone Adapter VT 2142-VD does not properly verify that a SIP INVITE message originated from a legitimate server, which allows remote attackers to send spoofed INVITE messages, as demonstrated by a flood of messages triggering a denial of service, and by phone calls with...

CVE-2007-5791

The Vonage Motorola Phone Adapter VT 2142-VD does not properly verify that a SIP INVITE message originated from a legitimate server, which allows remote attackers to send spoofed INVITE messages, as demonstrated by a flood of messages triggering a denial of service, and by phone calls with...

CVE-2007-5791

The Vonage Motorola Phone Adapter VT 2142-VD does not properly verify that a SIP INVITE message originated from a legitimate server, which allows remote attackers to send spoofed INVITE messages, as demonstrated by a flood of messages triggering a denial of service, and by phone calls with...

CVE-2007-5791

The CVE-2007-5791 entry concerns the Vonage Motorola Phone Adapter VT 2142-VD failing to verify that SIP INVITE messages originate from a legitimate server, enabling remote attackers to spoof INVITEs. This can trigger a flood of messages causing a denial of service and may facilitate calls with m...

Code injection

Cisco Unified Communications Manager CUCM, formerly CallManager 5.1 before 5.12, and Unified CallManager 5.0, allow remote attackers to cause a denial of service kernel panic via a flood of SIP INVITE messages to UDP port 5060, which triggers resource exhaustion, aka CSCsi75822...

CVE-2007-5537

Cisco Unified Communications Manager CUCM, formerly CallManager 5.1 before 5.12, and Unified CallManager 5.0, allow remote attackers to cause a denial of service kernel panic via a flood of SIP INVITE messages to UDP port 5060, which triggers resource exhaustion, aka CSCsi75822...

Code injection

The Thomson ST 2030 SIP phone with software 1.52.1 allows remote attackers to cause a denial of service device hang via 1 an empty SIP message or 2 a SIP INVITE message with a malformed To header, different vectors than CVE-2007-4553...

Thomson SpeedTouch 2030 SIP畸形INVITE消息远程拒绝服务漏洞

BUGTRAQ ID: 25446 Thomson ST 2030是符合SIP/MGCP协议标准的VoIP电话。 ST 2030处理畸形的INVITE请求时存在漏洞，远程攻击者可能利用此漏洞导致设备不可用。 ST 2030电话没有正确地处理INVITE消息，如果远程攻击者向电话发送的INVITE消息中Via:字段中版本后包含有“/”字符的话，就会导致设备崩溃。 Thomnson SpeedTouch 2030 1.52.1 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本：...

Thomson ST 2030 SIP phone DoS

Crash on invalid INVITE request Via: and To: headers and also on empty message...

CVE-2007-4553

The Thomson ST 2030 SIP phone with software 1.52.1 allows remote attackers to cause a denial of service device hang via an INVITE message with a Via header that contains a '/' slash instead of the required space following the SIP version number...

Thomson SpeedTouch ST 2030 (SIP Phone) - SIP Invite Message Remote Denial of Service

Thomson SpeedTouch ST 2030 SIP Phone - SIP Invite Message Remote Denial of Service source: https://www.securityfocus.com/bid/25446/info Thomson SpeedTouch 2030 is prone to a denial-of-service vulnerability because the device fails to handle specially crafted SIP INVITE messages. Exploiting this...

Thomson SpeedTouch ST 2030 (SIP Phone) - SIP Invite Message Remote Denial of Service

source: https://www.securityfocus.com/bid/25446/info Thomson SpeedTouch 2030 is prone to a denial-of-service vulnerability because the device fails to handle specially crafted SIP INVITE messages. Exploiting this issue allows remote attackers to cause the device to stop responding, thus denying...