In association with heise online

« previous | next »
20 March 2007, 16:03

DoS vulnerability in Cisco's SIP telephones

According to a security advisory, Cisco's 7940/7960 SIP telephones can be rebooted with a specially prepared INVITE message. This vulnerability would probably be especially disturbing if the attacker exploited this DoS vulnerability whilst you were making a call.

The problem occurs in the analysis of an sipURI field in the other caller's INVITE message. Devices with firmware version P0S3-07-4-00 are affected, while the vulnerability has been remedied in POS8-6-0. The security advisory contains an exploit of only a few lines written in Perl to demonstrate the vulnerability.

For more information, see:

(ehe)

« previous | next »
Print Version | Send by email | Permalink: http://h-online.com/-732515

Also on The H:

  • Share this article
  • Twitter
  • Facebook
  • digg this
  • submit to slashdot
  • post to delicious
  • StumbleUpon
  • submit to reddit
The H Open Headlines

Price Insight Top 10 powered by Skinflint

  1. Samsung SSD 830 Series 128GB
  2. Samsung SSD 830 Series 256GB
  3. Samsung SSD 830 Series Desktop Upgrade Kit 256GB
  4. Intel Core i5-3570K
  5. Samsung Galaxy S3 i9300 16GB blau
  6. Crucial m4 SSD 128GB
  7. Gigabyte GeForce GTX 670 OC
  8. Palit GeForce GTX 670
  9. Diablo 3 (deutsch)
  10. Samsung Galaxy Nexus i9250 16GB silber

The H

The H open source

The H Security

The H Internet Toolkit