Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4753

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2007-4753
Last Modified 05 Sep 2008 05:29:02
Published 07 Sep 2007 08:17:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-4753

Summary

The Thomson ST 2030 SIP phone with software 1.52.1 allows remote attackers to cause a denial of service (device hang) via (1) an empty SIP message or (2) a SIP INVITE message with a malformed To header, different vectors than CVE-2007-4553.

Vulnerable Systems


References

XF - thomson-sippacket-dos(36286)

SECTRACK - 1018616

SECTRACK - 1018611

SECUNIA - 26587

FULLDISC - 20070828 DOS vulnerability on Thomson SIP phone ST 2030 using an empty packet

FULLDISC - 20070827 DOS vulnerability on Thomson SIP phone ST 2030 using the TO Header

SREASON - 3104


Last Updated: 27 May 2016 10:45:57