Vulnerability Details CVE-2005-4050
Buffer overflow in multiple Multi-Tech Systems MultiVOIP devices with firmware before x.08 allows remote attackers to execute arbitrary code via a long INVITE field in a Session Initiation Protocol (SIP) packet.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.037
EPSS Ranking 88.3%
CVSS Severity
CVSS v2 Score 7.5
References
- http://secunia.com/advisories/17852
- http://securityreason.com/securityalert/231
- http://securitytracker.com/id?1015314
- http://www.securityfocus.com/archive/1/418653/100/0/threaded
- http://www.securityfocus.com/bid/15711
- http://www.securitylab.net/research/2005/12/buffer_overflow_in_multitech_v.html
- http://www.vupen.com/english/advisories/2005/2781
- https://exchange.xforce.ibmcloud.com/vulnerabilities/23416
- http://secunia.com/advisories/17852
- http://securityreason.com/securityalert/231
- http://securitytracker.com/id?1015314
- http://www.securityfocus.com/archive/1/418653/100/0/threaded
- http://www.securityfocus.com/bid/15711
- http://www.securitylab.net/research/2005/12/buffer_overflow_in_multitech_v.html
- http://www.vupen.com/english/advisories/2005/2781
- https://exchange.xforce.ibmcloud.com/vulnerabilities/23416
Products affected by CVE-2005-4050
-
cpe:2.3:h:multi-tech_systems:multivoip:*