QwikSec

Security Database

CVE

CWE

Training

CVE-2007-5791

Published: Nov 1, 2007

Modified: Aug 7, 2024

PUBLISHED

Description

The Vonage Motorola Phone Adapter VT 2142-VD does not properly verify that a SIP INVITE message originated from a legitimate server, which allows remote attackers to send spoofed INVITE messages, as demonstrated by a flood of messages triggering a denial of service, and by phone calls with malicious content.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

vdb-entry

x_refsource_OSVDB

http://www.sipera.com/index.php?action=resources%2Cthreat_advisory&tid=357

x_refsource_MISC

vdb-entry

x_refsource_OSVDB

vonage-motorola-invite-weak-security(37420)

vdb-entry

x_refsource_XF

third-party-advisory

x_refsource_SECUNIA

http://www.sipera.com/index.php?action=resources%2Cthreat_advisory&tid=360

x_refsource_MISC

vonage-motorola-invite-dos(37416)

vdb-entry

x_refsource_XF

vdb-entry

x_refsource_BID

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.