CVE-2003-1108

Опубликовано: 31 дек. 2003

Источник: nvd

CVSS2: 5

EPSS Средний

Описание

The Session Initiation Protocol (SIP) implementation in Alcatel OmniPCX Enterprise 5.0 Lx allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted INVITE messages, as demonstrated by the OUSPG PROTOS c07-sip test suite.

Ссылки

http://www.cert.org/advisories/CA-2003-06.html
Third Party Advisory
US Government Resource
http://www.ee.oulu.fi/research/ouspg/protos/testing/c07/sip/
Exploit
http://www.kb.cert.org/vuls/id/528719
Third Party Advisory
US Government Resource
http://www.securityfocus.com/bid/6904
https://exchange.xforce.ibmcloud.com/vulnerabilities/11379
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5831
http://www.cert.org/advisories/CA-2003-06.html
Third Party Advisory
US Government Resource
http://www.ee.oulu.fi/research/ouspg/protos/testing/c07/sip/
Exploit
http://www.kb.cert.org/vuls/id/528719
Third Party Advisory
US Government Resource
http://www.securityfocus.com/bid/6904
https://exchange.xforce.ibmcloud.com/vulnerabilities/11379
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5831

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:alcatel-lucent:omnipcx:5.0:*:linux:*:*:*:*:*

EPSS

Процентиль: 94%

0.12221

Средний

5 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-8cg4-mrgx-qxgm

github

больше 3 лет назад