Vulnerability Details CVE-2007-3437
AOL Instant Messenger (AIM) 6.1.32.1 on Windows XP allows remote attackers to cause a denial of service (application crash) via a malformed header value in a SIP INVITE message, a different vulnerability than CVE-2007-3350.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 68.7%
CVSS Severity
CVSS v2 Score 7.8
References
- http://osvdb.org/45428
- http://www.sipera.com/index.php?action=resources%2Cthreat_advisory&tid=294&
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35070
- http://osvdb.org/45428
- http://www.sipera.com/index.php?action=resources%2Cthreat_advisory&tid=294&
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35070
Products affected by CVE-2007-3437
-
cpe:2.3:a:aol:instant_messenger:6.1.32.1
-
cpe:2.3:o:microsoft:windows_xp:-
-
cpe:2.3:o:microsoft:windows_xp:sp2
-
cpe:2.3:o:microsoft:windows_xp:sp3
-
cpe:2.3:o:microsoft:windows_xp:unknown