12 matches found
EUVD-2014-2595
Malware in sbrugna...
CVE-2014-2560
The PhonerLite phone before 2.15 provides hashed credentials in a response to an invalid authentication challenge, which makes it easier for remote attackers to obtain access via a brute-force attack, related to a "SIP Digest Leak" issue...
Design/Logic Flaw
The PhonerLite phone before 2.15 provides hashed credentials in a response to an invalid authentication challenge, which makes it easier for remote attackers to obtain access via a brute-force attack, related to a "SIP Digest Leak" issue...
CVE-2014-2560
The PhonerLite phone before 2.15 provides hashed credentials in a response to an invalid authentication challenge, which makes it easier for remote attackers to obtain access via a brute-force attack, related to a "SIP Digest Leak" issue...
CVE-2014-2560
PhonerLite SIP Digest Leak (CVE-2014-2560) affects PhonerLite before version 2.15. The vulnerability is an information disclosure where the client reveals MD5-digest authenticated user credentials in a response to an invalid authentication challenge, exposed via spoofed SIP INVITE messages. This ...
PhonerLite 2.14 SIP Soft Phone - SIP Digest Disclosure
No description provided by source. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 I. Advisory Summary Title: SIP Digest Leak Information Disclosure in PhonerLite 2.14 SIP Soft Phone Date Published: March 30, 2014 Vendors contacted: Heiko Sommerfeldt, PhonerLite author Discovered by: Jason Ostrom...
PhonerLite 2.14 SIP Soft Phone - SIP Digest Disclosure
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 I. Advisory Summary Title: SIP Digest Leak Information Disclosure in PhonerLite 2.14 SIP Soft Phone Date Published: March 30, 2014 Vendors contacted: Heiko Sommerfeldt, PhonerLite author Discovered by: Jason Ostrom Severity: Medium II. Vulnerability...
PhonerLite SIP摘要远程信息泄漏漏洞
Bugtraq ID:66539 CVE ID:CVE-2014-2560 PhonerLite是一款网络电话应用,可以让您的电脑使用新的互联网电话技术电话VoIP,IP语音。 PhonerLite允许恶意第三方伪造SIP INVITE消息,获取目标用户的SIP MD5摘要验证用户验证凭据哈希值。 0 PhonerLite 2.14 PhonerLite 2.15版本已修复该漏洞,建议用户下载使用: http://www.ektron.com/...
PhonerLite information leak
Password digest information leak...
PhonerLite 2.14 SIP Soft Phone - SIP Digest Disclosure
PhonerLite 2.14 SIP Soft Phone - SIP Digest Disclosure -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 I. Advisory Summary Title: SIP Digest Leak Information Disclosure in PhonerLite 2.14 SIP Soft Phone Date Published: March 30, 2014 Vendors contacted: Heiko Sommerfeldt, PhonerLite author...
PhonerLite 2.14 SIP Soft Phone - SIP Digest Leak Information Disclosure (CVE-2014-2560)
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 I. Advisory Summary Title: SIP Digest Leak Information Disclosure in PhonerLite 2.14 SIP Soft Phone Date Published: March 30, 2014 Vendors contacted: Heiko Sommerfeldt, PhonerLite author Discovered by: Jason Ostrom Severity: Medium II. Vulnerability...
PhonerLite 2.14 Digest Information Leak
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 I. Advisory Summary Title: SIP Digest Leak Information Disclosure in PhonerLite 2.14 SIP Soft Phone Date Published: March 30, 2014 Vendors contacted: Heiko Sommerfeldt, PhonerLite author Discovered by: Jason Ostrom Severity: Medium II. Vulnerability...