QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2007-4498

Back to search

CVE-2007-4498

Published: Aug 23, 2007

Modified: Aug 7, 2024

PUBLISHED

Description

The Grandstream SIP Phone GXV-3000 with firmware 1.0.1.7, Loader 1.0.0.6, and Boot 1.0.0.18 allows remote attackers to force silent call completion, eavesdrop on the phone's local environment, and cause a denial of service (blocked call reception) via a certain SIP INVITE message followed by a certain "SIP/2.0 183 Session Progress" message.

VendorProductVersions

n/a

n/a

affected
n/a

References

26568
third-party-advisory
x_refsource_SECUNIA
ADV-2007-2970
vdb-entry
x_refsource_VUPEN
25399
vdb-entry
x_refsource_BID
1018598
vdb-entry
x_refsource_SECTRACK
3059
third-party-advisory
x_refsource_SREASON
sipphone-sip-dos(36170)
vdb-entry
x_refsource_XF
40185
vdb-entry
x_refsource_OSVDB

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now
CVE-2007-4498 - Security Vulnerability | QwikSec