Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-5180

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2008-5180
Last Modified 15 Apr 2010 01:27:44
Published 20 Nov 2008 10:30:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-5180

Summary

Microsoft Communicator, and Communicator in Microsoft Office 2010 beta, allows remote attackers to cause a denial of service (memory consumption) via a large number of SIP INVITE requests, which trigger the creation of many sessions.

Vulnerable Systems

Application

  • Microsoft Office Communicator


References

XF - office-communicator-sip-dos(57581)

XF - microsoft-communicator-invite-dos(46673)

MISC - http://www.voipshield.com/research-details.php?id=133

SECTRACK - 1021294

BID - 39221

MILW0RM - 7262

EXPLOIT-DB - 12079

SECUNIA - 32940


Last Updated: 27 May 2016 10:48:44