PT-2007-4712 · Aastra · Aastra 9112I Sip Phone

Published

2007-06-27

Updated

2017-07-29

CVE-2007-3441

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions Aastra 9112i SIP Phone version 1.4.0.1048

Description The issue allows remote attackers to cause a denial of service, resulting in blocked call reception and slow calling, via format string specifiers in an SDP header value.

Recommendations For version 1.4.0.1048, consider restricting access to the SDP header to minimize the risk of exploitation until a patch is available.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2007-3441

Affected Products

Aastra 9112I Sip Phone

PT-2007-4712 · Aastra · Aastra 9112I Sip Phone

CVE-2007-3441

Related Identifiers

Affected Products

References · 4