Lucene search
K

198 matches found

Prion
Prion
added 2009/08/27 5:0 p.m.22 views

Code injection

Cisco Unified Communications Manager aka CUCM, formerly CallManager before 6.11 allows remote attackers to cause a denial of service voice-services outage via a malformed header in a SIP message, aka Bug ID CSCsi46466...

7.8CVSS7AI score0.03436EPSS
Exploits0References6Affected Software1
NVD
NVD
added 2009/08/27 5:0 p.m.23 views

CVE-2009-2050

Cisco Unified Communications Manager aka CUCM, formerly CallManager before 6.11 allows remote attackers to cause a denial of service voice-services outage via a malformed header in a SIP message, aka Bug ID CSCsi46466...

7.8CVSS6.5AI score0.03436EPSS
Exploits0References6
Cvelist
Cvelist
added 2009/08/27 4:31 p.m.37 views

CVE-2009-2050

Cisco Unified Communications Manager aka CUCM, formerly CallManager before 6.11 allows remote attackers to cause a denial of service voice-services outage via a malformed header in a SIP message, aka Bug ID CSCsi46466...

6.5AI score0.03436EPSS
Exploits0References6
Cvelist
Cvelist
added 2008/07/18 3:0 p.m.23 views

CVE-2008-3210

rutil/dns/DnsStub.cxx in ReSIProcate 1.3.2, as used by repro, allows remote attackers to cause a denial of service daemon crash via a SIP 1 INVITE or 2 OPTIONS message with a long domain name in a request URI, which triggers an assert error...

6.6AI score0.03455EPSS
Exploits1References7
Prion
Prion
added 2008/05/12 4:20 p.m.10 views

Stack overflow

Multiple stack-based buffer overflows in the 1 getremoteipmedia and 2 getremoteipv6media functions in call.cpp in SIPp 3.1 allow remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a crafted SIP message...

7.5CVSS8.3AI score0.05228EPSS
Exploits1References8Affected Software1
Cvelist
Cvelist
added 2008/05/12 4:0 p.m.28 views

CVE-2008-2085

Multiple stack-based buffer overflows in the 1 getremoteipmedia and 2 getremoteipv6media functions in call.cpp in SIPp 3.1 allow remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a crafted SIP message...

7.5AI score0.05228EPSS
Exploits1References8
NVD
NVD
added 2008/04/25 7:5 p.m.13 views

CVE-2008-1959

Stack-based buffer overflow in the getremotevideoportmedia function in call.cpp in SIPp 3.0 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted SIP message. NOTE: some of these details are obtained from third party information...

7.5CVSS7.8AI score0.03485EPSS
Exploits0References7
Prion
Prion
added 2008/04/25 7:5 p.m.11 views

Stack overflow

Stack-based buffer overflow in the getremotevideoportmedia function in call.cpp in SIPp 3.0 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted SIP message. NOTE: some of these details are obtained from third party information...

7.5CVSS8.5AI score0.03485EPSS
Exploits0References7Affected Software1
OSV
OSV
added 2008/04/25 7:5 p.m.1 views

DEBIAN-CVE-2008-1959

Stack-based buffer overflow in the getremotevideoportmedia function in call.cpp in SIPp 3.0 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted SIP message. NOTE: some of these details are obtained from third party information...

7.5CVSS7.8AI score0.03485EPSS
Exploits0References1
Prion
Prion
added 2007/10/12 6:17 p.m.20 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Linksys SPA941 VoIP Phone with firmware 5.1.8 allows remote attackers to inject arbitrary web script or HTML via the From header in a SIP message...

4.3CVSS6.2AI score0.01465EPSS
Exploits1References4
Prion
Prion
added 2007/09/08 12:17 a.m.15 views

Code injection

The Thomson ST 2030 SIP phone with software 1.52.1 allows remote attackers to cause a denial of service device hang via 1 an empty SIP message or 2 a SIP INVITE message with a malformed To header, different vectors than CVE-2007-4553...

5CVSS6.9AI score0.08214EPSS
Exploits0References7Affected Software1
securityvulns
securityvulns
added 2007/08/27 12:0 a.m.31 views

[Full-disclosure] DOS vulnerability on Thomson SIP phone ST 2030 using the VIA Header

MADYNES Security Advisory : Remote DOS on Thomson SIP phone ST 2030 Date of Discovery 15 February, 2007 Vendor was notified on 1 March 2007 ID: KIPH8 Synopsis After sending a message where the a space is replaced by a slash after the SIP version in the VIA, the device looks functional but in fact...

0.3AI score
Exploits0
Prion
Prion
added 2007/06/22 6:30 p.m.19 views

Design/Logic Flaw

ageet AGEphone before 1.6.2, running on Windows Mobile 5 on the HTC HyTN Pocket PC device, allows remote attackers to 1 cause a denial of service call disruption and device hang via a SIP message with a malformed header and 2 cause a denial of service call disruption, false ring indication, and...

7.8CVSS6.9AI score0.01978EPSS
Exploits0References8Affected Software1
Cvelist
Cvelist
added 2007/06/22 6:0 p.m.20 views

CVE-2007-3362

ageet AGEphone before 1.6.2, running on Windows Mobile 5 on the HTC HyTN Pocket PC device, allows remote attackers to 1 cause a denial of service call disruption and device hang via a SIP message with a malformed header and 2 cause a denial of service call disruption, false ring indication, and...

6.6AI score0.01978EPSS
Exploits0References8
NVD
NVD
added 2007/06/21 6:30 p.m.18 views

CVE-2007-3318

Buffer overflow in the Session Initiation Protocol SIP User Access Client UAC message parsing module in Avaya one-X Desktop Edition 2.1.0.70 and earlier allows remote attackers to cause a denial of service call reception outage via a malformed SIP message...

5CVSS6.8AI score0.01917EPSS
Exploits0References7
NVD
NVD
added 2007/06/21 6:30 p.m.16 views

CVE-2007-3317

The Session Initiation Protocol SIP User Access Client UAC message parsing module in Avaya one-X Desktop Edition 2.1.0.70 and earlier allows remote attackers to cause a denial of service device crash via a malformed SIP message...

7.8CVSS6.6AI score0.01916EPSS
Exploits0References6
OSV
OSV
added 2007/04/26 8:19 p.m.6 views

CVE-2007-2293

Multiple stack-based buffer overflows in the processsdp function in chansip.c of the SIP channel T.38 SDP parser in Asterisk before 1.4.3 allow remote attackers to execute arbitrary code via a long 1 T38FaxRateManagement or 2 T38FaxUdpEC SDP parameter in an SIP message, as demonstrated using SIP...

8AI score
Exploits0References13
securityvulns
securityvulns
added 2006/04/20 12:0 a.m.46 views

Linksys RT31P2 SIP DoS

IP telephony hangs on invalid SIP message...

0.5AI score
Exploits0References1
Rows per page
Query Builder