| |
Vulnerability CVE-2007-3351
Published: 2007-06-22 Modified: 2012-02-12
| Description: |
The SJPhone SIP soft phone 1.60.303c, when installed on the Dell Axim X3 running Windows Mobile 2003, allows remote attackers to cause a denial of service (device hang and traffic amplification) via a direct crafted INVITE transaction, which causes the phone to transmit many RTP packets. |
CVSS2 => (AV:N/AC:L/Au:N/C:N/I:N/A:C)
| CVSS Base Score |
Impact Subscore |
Exploitability Subscore |
7.8/10 |
6.9/10 |
10/10 |
| Exploit range |
Attack complexity |
Authentication |
Remote |
Low |
No required |
| Confidentiality impact |
Integrity impact |
Availability impact |
None |
None |
Complete |
References: |
http://www.sipera.com/index.php?action=resources,threat_advisory&tid=217& ;
http://www.securityfocus.com/bid/24549
|
|
|
Copyright 2024, cxsecurity.com
|
|
|
