QwikSec

Security Database

CVE

CWE

Training

CVE-2007-3441

Published: Jun 27, 2007

Modified: Aug 7, 2024

PUBLISHED

Description

Format string vulnerability in the Aastra 9112i SIP Phone with firmware 1.4.0.1048 and boot version 1.1.0.10 allows remote attackers to cause a denial of service (blocked call reception and slow calling) via format string specifiers in an SDP header value, a different vulnerability than CVE-2007-3349.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://www.sipera.com/index.php?action=resources%2Cthreat_advisory&tid=278&

x_refsource_MISC

vdb-entry

x_refsource_OSVDB

aastra-sdp-header-dos(35079)

vdb-entry

x_refsource_XF

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.