--%> SecPod SCAP Repo, a repository of SCAP Content (CVE, CCE, CPE, CWE, OVAL and XCCDF)
[Forgot Password]
Login  Register Subscribe

23631

 
 

115038

 
 

96174

 
 

909

 
 

78077

 
 

109

Paid content will be excluded from the download.


Download | Alert*
CVE
view XML

CVE-2007-3369

Date: (C)2007-06-22   (M)2015-12-16
 
CVSS Score: 7.8Access Vector: NETWORK
Exploitability Subscore: 10.0Access Complexity: LOW
Impact Subscore: 6.9Authentication: NONE
 Confidentiality: NONE
 Integrity: NONE
 Availability: COMPLETE











Buffer overflow in the Polycom SoundPoint IP 601 SIP phone with BootROM 3.0.x+ and SIP version 1.6.3.0067 allows remote attackers to cause a denial of service (device hang or reboot) via an INVITE message with a long Via header.

Reference:
BID-24542
SECUNIA-25780
OSVDB-37610
ADV-2007-2329
http://knowledgebase.polycom.com/KanisaPlatform/Publishing/927/11898_f.SAL_PUBLIC_1_2.html
http://www.polycom.com/common/pw_item_show_doc/1
00.pdf
http://www.sipera.com/index.php?action=resources
threat_advisory&tid=272&

CPE    1
cpe:/h:polycom:soundpoint_ip_601:1.6.3.0067_bootrom_3.0.0
CWE    1
CWE-119

© 2013 SecPod Technologies