CVE-2007-3319 in 4602SW IP Phoneinformation

Résumé

par MITRE

The Avaya 4602SW IP Phone (Model 4602D02A) with 2.2.2 and earlier SIP firmware does not use the cnonce parameter in the Authorization header of SIP requests during MD5 digest authentication, which allows remote attackers to conduct man-in-the-middle attacks and hijack or intercept communications.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Réserver

21/06/2007

Divulgation

21/06/2007

Modérer

accepté

Entrée

VDB-37385

CPE

prêt

EPSS

0.01632

KEV

non

Activités

très faible

Sources

Do you need the next level of professionalism?

Upgrade your account now!