Vulnerability Details : CVE-2007-5791
The Vonage Motorola Phone Adapter VT 2142-VD does not properly verify that a SIP INVITE message originated from a legitimate server, which allows remote attackers to send spoofed INVITE messages, as demonstrated by a flood of messages triggering a denial of service, and by phone calls with malicious content.
Vulnerability category: BypassGain privilegeDenial of service
Products affected by CVE-2007-5791
- cpe:2.3:h:vonage:motorola_phone_adapter_vt2142-vd:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2007-5791
2.88%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 91 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2007-5791
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
10.0
|
HIGH | AV:N/AC:L/Au:N/C:C/I:C/A:C |
10.0
|
10.0
|
NIST |
CWE ids for CVE-2007-5791
-
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.Assigned by: nvd@nist.gov (Primary)
References for CVE-2007-5791
-
http://www.securityfocus.com/bid/26129
-
http://www.sipera.com/index.php?action=resources,threat_advisory&tid=357
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/37416
-
http://www.sipera.com/index.php?action=resources,threat_advisory&tid=360
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/37420
Jump to