|
|
>> Senao SI-680H Wireless VoIP Phone Denial of Service Vulnerability
|
Title : Senao SI-680H Wireless VoIP Phone Denial of Service Vulnerability
VUPEN ID : VUPEN/ADV-2005-2474
CVE ID : CVE-2005-3715
Rated as : Low Risk 
Remotely Exploitable : Yes
Locally Exploitable : Yes
Release Date : 2005-11-17
|
A vulnerability has been identified in Senao SI-680H Wireless VoIP Phone, which could be exploited by attackers to cause a denial of service. This flaw is due to an error where the device listens on UDP port 17185 to allow connections from a VxWorks debugger, which could be exploited by remote users to collect sensitive information or conduct a denial of service attack against an affected device.
Affected Products
Senao SI-680H Wireless VoIP Phone version 1.7.0 with firmware version 0.03.0839
Solution
VUPEN Security is not aware of any vendor-supplied patch.
References
http://www.vupen.com/english/advisories/2005/2474
http://www.frsirt.com/english/reference/959
Credits
Vulnerability reported by Shawn Merdinger
ChangeLog
2005-11-17 : Initial release
Vulnerability Management
Subscribe to VUPEN VNS and receive real-time alerts when new advisories or patches relevant to your systems and network configurations are available.
Feedback
If you have additional information or corrections for this security advisory please submit them via our contact form. | |
|
