1126 matches found
Grandstream Budge Tone-200 IP Phone - Digest domain Denial of Service
Grandstream Budge Tone-200 IP Phone - Digest domain Denial of Service !/usr/bin/perl MADYNES Security Advisory http://madynes.loria.fr Title: Grandstream Budge Tone-200 denial of service vulnerability Release Date: 21/03/2007 Severity: High - Denial of Service Advisory ID:KIPH3 Hardware:...
Cisco 7940 IP Phone denial of service
Crash on malformed INVITE SIP packet...
Grandstream Budge Tone-200 IP Phone - Digest domain Denial of Service
!/usr/bin/perl MADYNES Security Advisory http://madynes.loria.fr Title: Grandstream Budge Tone-200 denial of service vulnerability Release Date: 21/03/2007 Severity: High - Denial of Service Advisory ID:KIPH3 Hardware: Grandstream Budge Tone-200 IP Phone...
Grandstream Budge Tone-200 IP Phone (Digest domain) DoS Exploit
Exploit for hardware platform in category dos / poc =============================================================== Grandstream Budge Tone-200 IP Phone Digest domain DoS Exploit =============================================================== !/usr/bin/perl MADYNES Security Advisory...
Design/Logic Flaw
Unspecified vulnerability in the Cisco IP Phone 7940 and 7960 running firmware before POS8-6-0 allows remote attackers to cause a denial of service via the Remote-Party-ID sipURI field in a SIP INVITE request. NOTE: the provenance of this information is unknown; the details are obtained solely fr...
CVE-2007-1542
Unspecified vulnerability in the Cisco IP Phone 7940 and 7960 running firmware before POS8-6-0 allows remote attackers to cause a denial of service via the Remote-Party-ID sipURI field in a SIP INVITE request. NOTE: the provenance of this information is unknown; the details are obtained solely fr...
CVE-2007-1542
Cisco IP Phone 7940/7960 devices with firmware prior to POS8-6-0 are affected by a denial-of-service vulnerability triggered by malformed SIP INVITE messages in the Remote-Party-ID sipURI field. A remote attacker can cause the phones to reboot, leading to temporary DoS. The issue stems from error...
Cisco IP Phone SIP INVITE Message Denial of Service Vulnerability
Cisco 7940 and 7960 IP phones with firmware version 7.4 contain a vulnerability that could allow an unauthenticated, remote attacker to cause a denial of service DoS condition. The vulnerability exists due to an error within the handling of malformed SIP INVITE messages. An attacker could exploit...
Cisco Phone 7940/7960 (SIP INVITE) Remote Denial of Service Exploit
Exploit for hardware platform in category dos / poc =================================================================== Cisco Phone 7940/7960 SIP INVITE Remote Denial of Service Exploit =================================================================== !/usr/bin/perl Title: Cisco 7940 SIP INVITE...
Colloquy IRC client multiple format string vulnerabilities
Multiple format string vulnerabilities, e.g. invite IRC command...
MOAB-16-01-2007.rb.txt
!/usr/bin/ruby c Copyright 2006 Lance M. Havok Makes use of the Colloquy INVITE format string vulnerability. require 'socket' targetchannel = ARGV0 || "whatever" targetserver = ARGV1 || "irc.server.org" targetport = ARGV2 || 6667 randnick = "spongebo" channeljoined = false readytogo = false...
Format string
Multiple format string vulnerabilities in 1 invitedToRoom: and 2 invitedToDirectChat: in Colloquy 2.1 and earlier allow remote attackers to cause a denial of service application crash and possibly execute arbitrary code via format string specifiers in the channel name of an INVITE request, relate...
Colloquy 2.1.3545 - INVITE Format String Denial of Service
Colloquy 2.1.3545 - INVITE Format String Denial of Service !/usr/bin/ruby c Copyright 2006 Lance M. Havok Makes use of the Colloquy INVITE format string vulnerability. require 'socket' targetchannel = ARGV0 || "whatever" targetserver = ARGV1 || "irc.server.org" targetport = ARGV2 || 6667 randnick...
Colloquy <= 2.1.3545 (INVITE) Format String Denial of Service Exploit
Exploit for macOS platform in category dos / poc ===================================================================== Colloquy Makes use of the Colloquy INVITE format string vulnerability. require 'socket' targetchannel = ARGV0 || "whatever" targetserver = ARGV1 || "irc.server.org" targetport =...
Colloquy 2.1.3545 - 'INVITE' Format String Denial of Service
!/usr/bin/ruby c Copyright 2006 Lance M. Havok Makes use of the Colloquy INVITE format string vulnerability. require 'socket' targetchannel = ARGV0 || "whatever" targetserver = ARGV1 || "irc.server.org" targetport = ARGV2 || 6667 randnick = "spongebo" channeljoined = false readytogo = false...
SIP Invite Spoof
This module will create a fake SIP invite request making the targeted device ring and display fake caller id information. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SIP Invite Spoof',...
CVE-2006-5563
CVE-2006-5563 affects Yahoo! Messenger (Service 18) before 8.1.0.195. Remote attackers can cause a denial of service (NULL dereference and application crash) via a crafted room name in a Conference Invite. This is the only technical detail provided by the sources; no further exploit steps, affect...
CVE-2006-3524
Buffer overflow in SIPfoundry sipXtapi released before 20060324 allows remote attackers to execute arbitrary code via a long CSeq field value in an INVITE message...
CVE-2006-3524
Buffer overflow in SIPfoundry sipXtapi released before 20060324 allows remote attackers to execute arbitrary code via a long CSeq field value in an INVITE message...
Format string
Multiple format string vulnerabilities in eStara SIP softphone allow remote attackers to cause a denial of service hang via SIP INVITE requests with format string specifiers in the SDP session description, as demonstrated using 1 the field name, 2 the o field owner/creator and session identifier,...