CVE-2007-3444

Name of the Vulnerable Software and Affected Versions Research in Motion BlackBerry 7270 with 4.0 SP1 Bundle 83

Description The issue allows remote attackers to cause a denial of service, specifically blocked call reception, via a malformed SIP invite message. This could be related to multiple format string specifiers in the From field, a spoofed source IP address, and limitations of the function stack frame.

Recommendations For Research in Motion BlackBerry 7270 with 4.0 SP1 Bundle 83, consider restricting access to SIP invite messages to minimize the risk of exploitation. As a temporary workaround, avoid using the From field in SIP invite messages until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this issue.