View Single Post
Unread 03-21-2007, 02:23 PM   #1
martin
 
Join Date: Feb 2006
Posts: 2,930
Thanks: 528
Thanked 646 Times in 340 Posts
martin is a jewel in the roughmartin is a jewel in the roughmartin is a jewel in the roughmartin is a jewel in the roughmartin is a jewel in the roughmartin is a jewel in the rough
Default Cisco IP Phone 7940/7960 Vulnerability

Cisco released updates to their SIP firmware to resolve DOS (denial of service) vulnerabilities with the 7940/7960 IP phones.

Quote:
The vulnerability is caused due to an error within the handling of certain SIP INVITE messages. This can be exploited to reboot the device by sending a specially crafted INVITE message with a malformed "sipURI" field of the Remote-Party-ID.
Original Article
__________________
Martin

Please post support questions on the forum. Do not send PMs unless requested.
martin is offline   Reply With Quote