PT-2007-4595 · Avaya · Avaya One-X Desktop Edition

Published

2007-06-21

Updated

2017-07-29

CVE-2007-3318

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions Avaya one-X Desktop Edition versions 2.1.0.70 and earlier

Description The issue is related to a buffer overflow in the Session Initiation Protocol (SIP) User Access Client (UAC) message parsing module. This can be exploited by remote attackers via a malformed SIP message, leading to a denial of service, specifically a call reception outage.

Recommendations For Avaya one-X Desktop Edition versions 2.1.0.70 and earlier, update to a version later than 2.1.0.70 to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2007-3318

Affected Products

Avaya One-X Desktop Edition

PT-2007-4595 · Avaya · Avaya One-X Desktop Edition

CVE-2007-3318

Related Identifiers

Affected Products

References · 8