EUVD-2007-1584

Malware in sbrugna...

EUVD-2005-2582

Malware in sbrugna...

Design/Logic Flaw

The Grandstream BudgeTone 200 IP phone, with program 1.1.1.14 and bootloader 1.1.1.5, allows remote attackers to cause a denial of service device crash via SIP 1 INVITE, 2 CANCEL, or unspecified other messages with a WWW-Authenticate header containing a crafted Digest domain...

CVE-2007-1590

The Grandstream BudgeTone 200 IP phone, with program 1.1.1.14 and bootloader 1.1.1.5, allows remote attackers to cause a denial of service device crash via SIP 1 INVITE, 2 CANCEL, or unspecified other messages with a WWW-Authenticate header containing a crafted Digest domain...

CVE-2007-1590

The CVE-2007-1590 issue affects the Grandstream BudgeTone 200 IP phone (program 1.1.1.14, bootloader 1.1.1.5). A remote attacker can trigger a denial of service (device crash) by sending SIP messages (INVITE, CANCEL, or others) containing a WWW-Authenticate header with a crafted Digest domain, as...

CVE-2007-1590

The Grandstream BudgeTone 200 IP phone, with program 1.1.1.14 and bootloader 1.1.1.5, allows remote attackers to cause a denial of service device crash via SIP 1 INVITE, 2 CANCEL, or unspecified other messages with a WWW-Authenticate header containing a crafted Digest domain...

CVE-2005-2581

Technical details (affected product, vulnerable component, impact, remediation) are not publicly provided in the supplied documents. Monitor for updates from official CVE records and security advisories.

CVE-2005-2581

Grandstream BudgeTone 101 and 102 running firmware 1.0.6.7 and possibly earlier versions, allows remote attackers to cause a denial of service device hang or reboot via a large UDP packet to port 5060...

CVE-2005-2182

The affected product is Grandstream BudgeTone BT100 VoIP phones. The vulnerability arises from improper validation of Call-ID, branch, and tag values in NOTIFY messages used to verify subscriptions, enabling remote spoofing of messages such as the “Messages waiting” indicator. Root cause: inadequ...

CVE-2005-2182

Grandstream BudgeTone BT 100 Voice over IP VoIP phones do not properly check the Call-ID, branch, and tag values in a NOTIFY message to verify a subscription, which allows remote attackers to spoof messages such as the "Messages waiting" message...

PT-2005-3111 · Grandstream · Grandstream Budgetone (Bt) 100

Name of the Vulnerable Software and Affected Versions: Grandstream BudgeTone BT 100 affected versions not specified Description: The issue concerns the Grandstream BudgeTone BT 100 Voice over IP VoIP phones, which do not properly validate certain values in a NOTIFY message. This allows remote...