Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-5361

Overview

Vulnerability Score 8.5 8.5
CVE Id CVE-2007-5361
Last Modified 07 Mar 2011 10:00:33
Published 20 Nov 2007 02:46:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-5361

Summary

The Communication Server in Alcatel-Lucent OmniPCX Enterprise 7.1 and earlier caches an IP address during a TFTP request from an IP Touch phone, and uses this IP address as the destination for all subsequent VoIP packets to this phone, which allows remote attackers to cause a denial of service (loss of audio) or intercept voice communications via a crafted TFTP request containing the phone's MAC address in the filename.

Vulnerable Systems

Application

  • Alcatel-lucent Omnipcx 7.1


References

CONFIRM - http://www1.alcatel-lucent.com/psirt/statements/2007004/IPTouchDOS.pdf

VUPEN - ADV-2007-3919

BID - 26494

BUGTRAQ - 20071119 Alcatel OmniPCX Enterprise VoIP Vulnerability

MISC - http://www.csnc.ch/static/advisory/csnc/alcatel_omnipcx_enterprise_audio_rerouting_vulnerability_v1.0.txt

OSVDB - 40522

XF - omnipcx-tftp-dos(38560)

SECTRACK - 1018983

SREASON - 3387

SECUNIA - 27710


Last Updated: 27 May 2016 10:46:09