Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-5469

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2007-5469
Last Modified 05 Sep 2008 05:30:51
Published 15 Oct 2007 08:17:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-5469

Summary

** DISPUTED ** OpenSER 1.2.2 does not verify the Digest authentication header URI against the Request URI in SIP messages, which allows remote attackers to use sniffed Digest authentication credentials to call arbitrary telephone numbers or spoof caller ID (aka "toll fraud and authentication forward attack"). NOTE: Debian disputes this issue, stating that "having the two URIs mismatch is allowed by the standard and happens in some setups for valid reasons."

Vulnerable Systems

Application

  • Openser 1.2.2


References

XF - callmanager-openser-sip-call-hijacking(37197)

BID - 26057

SECUNIA - 27204

FULLDISC - 20071015 CallManager and OpeSer toll fraud and authentication forward attack

FULLDISC - 20071012 CallManager and OpeSer toll fraud and authentication forward attack

MISC - http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=446956


Last Updated: 27 May 2016 10:46:10