Lucene search
K

1126 matches found

Cvelist
Cvelist
added 2007/08/28 12:0 a.m.23 views

CVE-2007-4553

The Thomson ST 2030 SIP phone with software 1.52.1 allows remote attackers to cause a denial of service device hang via an INVITE message with a Via header that contains a '/' slash instead of the required space following the SIP version number...

6.5AI score0.08214EPSS
Exploits0References7
exploitpack
exploitpack
added 2007/08/27 12:0 a.m.11 views

Thomson SpeedTouch ST 2030 (SIP Phone) - SIP Invite Message Remote Denial of Service

Thomson SpeedTouch ST 2030 SIP Phone - SIP Invite Message Remote Denial of Service source: https://www.securityfocus.com/bid/25446/info Thomson SpeedTouch 2030 is prone to a denial-of-service vulnerability because the device fails to handle specially crafted SIP INVITE messages. Exploiting this...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2007/08/27 12:0 a.m.29 views

Thomson SpeedTouch ST 2030 (SIP Phone) - SIP Invite Message Remote Denial of Service

source: https://www.securityfocus.com/bid/25446/info Thomson SpeedTouch 2030 is prone to a denial-of-service vulnerability because the device fails to handle specially crafted SIP INVITE messages. Exploiting this issue allows remote attackers to cause the device to stop responding, thus denying...

7AI score
Exploits0
Cvelist
Cvelist
added 2007/08/23 7:0 p.m.19 views

CVE-2007-4498

The Grandstream SIP Phone GXV-3000 with firmware 1.0.1.7, Loader 1.0.0.6, and Boot 1.0.0.18 allows remote attackers to force silent call completion, eavesdrop on the phone's local environment, and cause a denial of service blocked call reception via a certain SIP INVITE message followed by a...

6.6AI score0.13642EPSS
Exploits1References8
Prion
Prion
added 2007/08/21 9:17 p.m.14 views

Code injection

Cisco IP Phone 7940 and 7960 with P0S3-08-6-00 firmware, and other SIP firmware before 8.70, allows remote attackers to cause a denial of service device reboot via 1 a certain sequence of 10 invalid SIP INVITE and OPTIONS messages; or 2 a certain invalid SIP INVITE message that contains a remote...

7.1CVSS7.1AI score0.13989EPSS
Exploits1References10Affected Software2
NVD
NVD
added 2007/08/17 9:17 p.m.17 views

CVE-2007-4382

CounterPath X-Lite 3.0 34025, and possibly eyeBeam, allows remote attackers to cause a denial of service device crash via a SIP INVITE message without a Content-Type header...

5CVSS6.7AI score0.0314EPSS
Exploits0References5
Prion
Prion
added 2007/08/17 9:17 p.m.33 views

Type confusion

CounterPath X-Lite 3.0 34025, and possibly eyeBeam, allows remote attackers to cause a denial of service device crash via a SIP INVITE message without a Content-Type header...

5CVSS7.2AI score0.0314EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2007/08/17 9:12 p.m.39 views

CVE-2007-4382

CVE-2007-4382 affects CounterPath X-Lite 3.0 34025 and possibly eyeBeam, where a SIP INVITE message lacking a Content-Type header can cause a device crash (remote denial of service). The available documents confirm the vulnerable component and the attack vector (SIP INVITE without Content-Type) a...

5CVSS6.7AI score0.0314EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2007/08/17 9:12 p.m.41 views

CVE-2007-4382

CounterPath X-Lite 3.0 34025, and possibly eyeBeam, allows remote attackers to cause a denial of service device crash via a SIP INVITE message without a Content-Type header...

6.7AI score0.0314EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2007/08/15 7:17 p.m.19 views

CVE-2007-4366

WengoPhone 2.1 allows remote attackers to cause a denial of service device crash via a SIP INVITE message without a Content-Type header...

5CVSS6AI score0.0336EPSS
Exploits1References1
CVE
CVE
added 2007/08/15 7:0 p.m.41 views

CVE-2007-4366

CVE-2007-4366 affects WengoPhone 2.1. It allows remote attackers to cause a denial of service (device crash) by sending a SIP INVITE message lacking a Content-Type header. The available documents confirm the affected product/version and the root cause (malformed SIP INVITE), with the impact descr...

5CVSS6.6AI score0.0336EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2007/08/15 7:0 p.m.20 views

CVE-2007-4366

WengoPhone 2.1 allows remote attackers to cause a denial of service device crash via a SIP INVITE message without a Content-Type header...

6.6AI score0.0336EPSS
Exploits1References5
Prion
Prion
added 2007/06/27 12:30 a.m.11 views

Design/Logic Flaw

The Research in Motion BlackBerry 7270 before 4.0 SP1 Bundle 108 does not properly manage transaction states, which allows remote attackers to cause a denial of service temporary device hang by sending a certain SIP INVITE message, but not providing an ACK when the call is answered...

2.3CVSS6.9AI score0.00597EPSS
Exploits0References7Affected Software1
Prion
Prion
added 2007/06/27 12:30 a.m.22 views

Format string

Format string vulnerability on the Research in Motion BlackBerry 7270 before 4.0 SP1 Bundle 108 allows remote attackers to cause a denial of service blocked call reception and calling via format string specifiers in an SIP INVITE message that lacks a host name in the Contact header...

2.3CVSS6.9AI score0.00669EPSS
Exploits0References6Affected Software1
Prion
Prion
added 2007/06/27 12:30 a.m.18 views

Code injection

AOL Instant Messenger AIM 6.1.32.1 on Windows XP allows remote attackers to cause a denial of service application crash via a malformed header value in a SIP INVITE message, a different vulnerability than CVE-2007-3350...

7.8CVSS6.8AI score0.01619EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2007/06/27 12:30 a.m.20 views

CVE-2007-3445

Buffer overflow in SJ Labs SJphone 1.60.303c, running under Windows Mobile 2003 on the Samsung SCH-i730 phone, allows remote attackers to cause a denial of service device hang and call termination via a malformed SIP INVITE message, a different vulnerability than CVE-2007-3351...

4.3CVSS6.7AI score0.0132EPSS
Exploits0References3
NVD
NVD
added 2007/06/27 12:30 a.m.12 views

CVE-2007-3437

AOL Instant Messenger AIM 6.1.32.1 on Windows XP allows remote attackers to cause a denial of service application crash via a malformed header value in a SIP INVITE message, a different vulnerability than CVE-2007-3350...

7.8CVSS6.4AI score0.01602EPSS
Exploits0References3
Prion
Prion
added 2007/06/27 12:30 a.m.11 views

Design/Logic Flaw

Microsoft MSN Messenger 4.7 on Windows XP allows remote attackers to cause a denial of service resource consumption via a flood of SIP INVITE requests to the port specified for voice conversation...

5CVSS6.9AI score0.12656EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2007/06/27 12:30 a.m.20 views

Buffer overflow

Buffer overflow in SJ Labs SJphone 1.60.303c, running under Windows Mobile 2003 on the Samsung SCH-i730 phone, allows remote attackers to cause a denial of service device hang and call termination via a malformed SIP INVITE message, a different vulnerability than CVE-2007-3351...

4.3CVSS7.1AI score0.01602EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2007/06/27 12:30 a.m.14 views

CVE-2007-3444

The Research in Motion BlackBerry 7270 with 4.0 SP1 Bundle 83 allows remote attackers to cause a denial of service blocked call reception via a malformed SIP invite message, possibly related to multiple format string specifiers in the From field, a spoofed source IP address, and limitations of th...

4.3CVSS6.7AI score0.0187EPSS
Exploits0References7
Rows per page
Query Builder