Vulnerability Details CVE-2007-5791
The Vonage Motorola Phone Adapter VT 2142-VD does not properly verify that a SIP INVITE message originated from a legitimate server, which allows remote attackers to send spoofed INVITE messages, as demonstrated by a flood of messages triggering a denial of service, and by phone calls with malicious content.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.03
EPSS Ranking 86.1%
CVSS Severity
CVSS v2 Score 10.0
References
- http://osvdb.org/38524
- http://osvdb.org/38525
- http://secunia.com/advisories/27380
- http://www.securityfocus.com/bid/26129
- http://www.sipera.com/index.php?action=resources%2Cthreat_advisory&tid=357
- http://www.sipera.com/index.php?action=resources%2Cthreat_advisory&tid=360
- https://exchange.xforce.ibmcloud.com/vulnerabilities/37416
- https://exchange.xforce.ibmcloud.com/vulnerabilities/37420
- http://osvdb.org/38524
- http://osvdb.org/38525
- http://secunia.com/advisories/27380
- http://www.securityfocus.com/bid/26129
- http://www.sipera.com/index.php?action=resources%2Cthreat_advisory&tid=357
- http://www.sipera.com/index.php?action=resources%2Cthreat_advisory&tid=360
- https://exchange.xforce.ibmcloud.com/vulnerabilities/37416
- https://exchange.xforce.ibmcloud.com/vulnerabilities/37420
Products affected by CVE-2007-5791
-
cpe:2.3:h:vonage:motorola_phone_adapter_vt2142-vd:*