CVE-2007-3349

High

7.8/10

Summary

The Aastra 9112i SIP Phone with firmware 1.4.0.1048 and boot version 1.1.0.10 allows remote attackers to (1) cause a denial of service (device freeze) via a malformed SIP message of a certain length or (2) cause a denial of service (continuous ring) via a malformed SIP message of a certain other length.

Access Complexity: LOW
AccessVector: NETWORK
Authentication: NONE
Integrity Impact: NONE
Confidentiality Impact: NONE
Availability Impact: COMPLETE

References

Advisory Timeline

Published Jun 22, 2007

CVE-2007-3349

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS