Senao SI-7800H wireless VoIP phone multiple vulnerabilities

VxWorks debugger TCP/17185 access...

[Full-disclosure] Senao SI-7800H VoIP wireless phone wdbrpc debug service UDP/17185

I disclosed the following issue at ShmooCon 2006 http://www.shmoocon.org/ during my "VoIP Wireless Phone Security Analysis" presentation. Thanks, --scm =============================================================== DATE: 16 January, 2006 VENDOR: Senao VENDOR NOTIFIED: 7 December, 2005 PRODUCT:...

CVE-2005-3715

Senao SI-680H Wireless VoIP Phone Firmware 0.03.0839 leaves the VxWorks debugger UDP port 17185 available without authentication, which allows attackers to access the phone OS, obtain sensitive information, and cause a denial of service...

CVE-2005-3715

CVE-2005-3715 affects Senao SI-680H Wireless VoIP Phone Firmware 0.03.0839. The issue stems from the VxWorks debugger UDP port 17185 being left open without authentication, which in turn allows an attacker to access the phone OS, potentially obtain sensitive information, and cause a denial of ser...

CVE-2005-3715

Senao SI-680H Wireless VoIP Phone Firmware 0.03.0839 leaves the VxWorks debugger UDP port 17185 available without authentication, which allows attackers to access the phone OS, obtain sensitive information, and cause a denial of service...

[Full-disclosure] Senao SI-680H VoIP Wifi phone undocumented open port

I disclosed today the following vulnerability at the 32nd CSI conference in Washington, D.C. https://www.cmpevents.com/CSI32/a.asp?option=G&V=3&id=406438 Thanks, Shawn Merdinger =============================================================== VENDOR: Senao VENDOR NOTIFIED: 28 June, 2005 VENDOR...

Senao SI-680H wirieless Wi-Fi VoIP phones unauthorized access

VxWorks debugger is available with UDP/17185...