CVE-2007-4553
CVE-2007-4553
The Thomson ST 2030 SIP phone with software 1.52.1 allows remote attackers to cause a denial of service (device hang) via an INVITE message with a Via header that contains a '/' (slash) instead of the required space following the SIP version number.
Affected products
n/a · n/apublic PoCs found — 2
exploitdbwww.exploit-db.com/exploits/4319unverifiedexploitdbwww.exploit-db.com/exploits/30530unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://lists.grok.org.uk/pipermail/full-disclosure/2007-August/065433.htmlhttp://secunia.com/advisories/26587http://securityreason.com/securityalert/3075https://exchange.xforce.ibmcloud.com/vulnerabilities/36217http://www.securityfocus.com/bid/25446http://www.securitytracker.com/id?1018603http://www.vupen.com/english/advisories/2007/2988