36 matches found
EUVD-2010-1588
Malware in sbrugna...
EUVD-2013-3336
Malware in sbrugna...
EUVD-2009-5094
Malware in sbrugna...
EUVD-2010-1594
Malware in sbrugna...
EUVD-2010-0611
Malware in sbrugna...
EUVD-2011-2528
Malware in sbrugna...
EUVD-2010-1592
Malware in sbrugna...
Cisco IP Phones Improper Neutralization of Input During Web Page Generation (CVE-2011-2545)
Cross-site scripting XSS vulnerability in the SIP implementation on the Cisco SPA8000 and SPA8800 before 6.1.11, SPA2102 and SPA3102 before 5.2.13, and SPA 500 series IP phones before 7.4.9 allows remote attackers to inject arbitrary web script or HTML via the FROM field of an INVITE message, aka...
Rockwell Automation Stratix 5900 Improper Input Validation (CVE-2014-2106)
A vulnerability in the Session Initiation Protocol SIP implementation in Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a reload of an affected device. To exploit this vulnerability, affected devices must be configured to process SIP messages...
CVE-2009-5139
The SIP implementation on the Gizmo5 software phone provides hashed credentials in a response to an invalid authentication challenge, which makes it easier for remote attackers to obtain access via a brute-force attack, related to a "SIP Digest Leak" issue...
Design/Logic Flaw
The SIP implementation on the Gizmo5 software phone provides hashed credentials in a response to an invalid authentication challenge, which makes it easier for remote attackers to obtain access via a brute-force attack, related to a "SIP Digest Leak" issue...
Design/Logic Flaw
The SIP implementation on the Linksys SPA2102 phone adapter provides hashed credentials in a response to an invalid authentication challenge, which makes it easier for remote attackers to obtain access via a brute-force attack, related to a "SIP Digest Leak" issue...
CVE-2009-5139
The SIP implementation on the Gizmo5 software phone provides hashed credentials in a response to an invalid authentication challenge, which makes it easier for remote attackers to obtain access via a brute-force attack, related to a "SIP Digest Leak" issue...
CVE-2009-5140
The SIP implementation on the Linksys SPA2102 phone adapter provides hashed credentials in a response to an invalid authentication challenge, which makes it easier for remote attackers to obtain access via a brute-force attack, related to a "SIP Digest Leak" issue...
Authentication flaw
DISPUTED An issue was discovered in SMA Solar Technology products. The SIP implementation does not properly use authentication with encryption: it is vulnerable to replay attacks, packet injection attacks, and man in the middle attacks. An attacker is able to successfully use SIP to communicate...
CVE-2017-9861
An issue was discovered in SMA Solar Technology products. The SIP implementation does not properly use authentication with encryption: it is vulnerable to replay attacks, packet injection attacks, and man in the middle attacks. An attacker is able to successfully use SIP to communicate with the...
CVE-2017-9861
An issue was discovered in SMA Solar Technology products. The SIP implementation does not properly use authentication with encryption: it is vulnerable to replay attacks, packet injection attacks, and man in the middle attacks. An attacker is able to successfully use SIP to communicate with the...
CVE-2014-3337
The SIP implementation in Cisco Unified Communications Manager CM 8.6.2 and earlier allows remote authenticated users to cause a denial of service process crash via a crafted SIP message that is not properly handled during processing of an XML document, aka Bug ID CSCtq76428...
Cisco TelePresence TC and TE Software Multiple Vulnerabilities (cisco-sa-20140430-tcte)
The version of Cisco TelePresence TC or TE software running on the remote host is affected by one or more of the following issues : - A denial of service vulnerability exists due to a flaw in the SIP implementation, potentially allowing a remote attacker to cause a device reload by sending crafte...
CVE-2014-2166
The SIP implementation in Cisco TelePresence TC Software 4.x and TE Software 4.x allows remote attackers to cause a denial of service device reload via crafted SIP packets, aka Bug ID CSCto70562...