Aastra Telecom : Security Vulnerabilities, CVEs, (Denial of service) CVSS score >= 5
Format string vulnerability in the Aastra 9112i SIP Phone with firmware 1.4.0.1048 and boot version 1.1.0.10 allows remote attackers to cause a denial of service (blocked call reception and slow calling) via format string specifiers in an SDP header value, a different vulnerability than CVE-2007-3349.
Max CVSS
5.0
EPSS Score
0.95%
Published
2007-06-27
Updated
2017-07-29
The Aastra 9112i SIP Phone with firmware 1.4.0.1048 and boot version 1.1.0.10 allows remote attackers to (1) cause a denial of service (device freeze) via a malformed SIP message of a certain length or (2) cause a denial of service (continuous ring) via a malformed SIP message of a certain other length.
Max CVSS
7.8
EPSS Score
2.65%
Published
2007-06-22
Updated
2017-07-29
2 vulnerabilities found