57 matches found
CVE-2017-15337
CVE-2017-15337 affects the SIP module across multiple Huawei products (DP300, IPS, NGFW, NIP, NIP6600/6800, RP200, SVN series, Secospace USG, TE/Views, eSpace U1981, ViewPoint, etc.). The root cause is insufficient validation of SIP messages, leading to a buffer overflow if an attacker crafts spe...
CVE-2017-15338
CVE-2017-15338 concerns buffer overflow in the SIP module of Huawei products (DP300, various SIP backup-related modules and related devices such as NIP, NGFW, USG, ViewPoint, eSpace U1981, etc.). The root cause is insufficient validation of SIP messages, requiring an attacker to craft specific me...
Denial of Service Vulnerability in Multiple Huawei Products (CNVD-2018-05435)
Huawei DP300 and so on are products of Huawei, China.DP300 is a video conferencing terminal.RP200 is an all-in-one video conferencing device.SIP Session Initiation Protocol is one of the session initiation protocol modules. A resource management error vulnerability exists in the SIP Session...
Security Advisory - Two Vulnerabilities in the SIP Module of Some Huawei Products
There is an out-of-bound read vulnerability in some Huawei products. A remote attacker send specially crafted Session Initiation Protocol SIP messages to the affected products. Due to insufficient input validation, successful exploit will cause some services abnormal. Vulnerability ID:...
SIP Module Cache Overflow Vulnerability in Multiple Huawei Products
Huawei DP300, RP200, RSE6500, TE30/40/50/60 are all products of Huawei China. A cache overflow vulnerability exists in the SIP module of multiple Huawei products, which is due to the device failing to adequately validate some of the values in SIP messages. An unauthenticated, remote attacker coul...
Security Advisory - Multiple Vulnerabilites in SIP Module on Huawei Products
There is an overflow vulnerability on the SIP module that attacker can exploit by sending a specially crafted SIP message, leading to a process reboot at random. Vulnerability ID: HWPSIRT-2017-06044 This vulnerability has been assigned a Common Vulnerabilities and Exposures CVE ID: CVE-2017-17142...
UBUNTU-CVE-2016-2316
chansip in Asterisk Open Source 1.8.x, 11.x before 11.21.1, 12.x, and 13.x before 13.7.1 and Certified Asterisk 1.8.28, 11.6 before 11.6-cert12, and 13.1 before 13.1-cert3, when the timert1 sip.conf configuration is set to a value greater than 1245, allows remote attackers to cause a denial of...
Ingate SIParator SIP Module Remote Denial of Service Vulnerability
Ingate SIParator is prone to a denial-of-service vulnerability. An attacker can exploit this issue to cause SIP modules to reset, denying service to legitimate users. OpenVAS Vulnerability Test $Id: gbingatesiparator48567.nasl 7015 2017-08-28 11:51:24Z teissa $ Ingate SIParator SIP Module Remote...
Ingate SIParator SIP Module Remote Denial of Service Vulnerability
Ingate SIParator is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description...
Ingate Firewall SIP Module Remote Denial of Service Vulnerability
Ingate Firewall is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
THC-HYDRA v6.4 - Fast network logon cracker
THC-HYDRA v6.4 - Fast network logon cracker THC-HYDRA is a very fast network logon cracker which support many different services. This tool is a proof of concept code, to give researchers and security consultants the possibility to show how easy it would be to gain unauthorized access from remote...
CVE-2008-0263
The SIP module in Ingate Firewall before 4.6.1 and SIParator before 4.6.1 does not reuse SIP media ports in unspecified call hold and send-only stream scenarios, which allows remote attackers to cause a denial of service port exhaustion via unspecified vectors...
CVE-2008-0263
The SIP module in Ingate Firewall before 4.6.1 and SIParator before 4.6.1 does not reuse SIP media ports in unspecified call hold and send-only stream scenarios, which allows remote attackers to cause a denial of service port exhaustion via unspecified vectors...
CVE-2008-0263
The CVE-2008-0263 entry concerns the SIP module in Ingate Firewall (before 4.6.1) and SIParator (before 4.6.1). The vulnerability arises because SIP media ports are not reused in unspecified call hold and send-only stream scenarios, which can lead to port exhaustion and a denial of service. The a...
Authentication flaw
Unspecified vulnerability in the SIP module in InGate Firewall and SIParator before 4.5.1 allows remote attackers to conduct replay attacks on the authentication mechanism via unknown vectors...
CVE-2007-0334
Unspecified vulnerability in the SIP module in InGate Firewall and SIParator before 4.5.1 allows remote attackers to conduct replay attacks on the authentication mechanism via unknown vectors...
CVE-2007-0334
Unspecified vulnerability in the SIP module in InGate Firewall and SIParator before 4.5.1 allows remote attackers to conduct replay attacks on the authentication mechanism via unknown vectors...