Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2003-12-31 | CVE-2003-1115 | Unspecified vulnerability in Nortel Succession Communication Server 2000 The Session Initiation Protocol (SIP) implementation in Nortel Networks Succession Communication Server 2000, when using SIP-T, allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted INVITE messages, as demonstrated by the OUSPG PROTOS c07-sip test suite. | 7.5 |
| 2003-12-31 | CVE-2003-1114 | Unspecified vulnerability in Mediatrix Telecom Voip Access Devices and Gateways Sipv2.3/Sipv2.4 The Session Initiation Protocol (SIP) implementation in Mediatrix Telecom VoIP Access Devices and Gateways running SIPv2.4 and SIPv4.3 firmware allows remote attackers to cause a denial of service or execute arbitrary code via crafted INVITE messages, as demonstrated by the OUSPG PROTOS c07-sip test suite. | 7.5 |
| 2003-12-31 | CVE-2003-1113 | Unspecified vulnerability in Iptel SIP Express Router 0.8.8/0.8.9 The Session Initiation Protocol (SIP) implementation in IPTel SIP Express Router 0.8.9 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted INVITE messages, as demonstrated by the OUSPG PROTOS c07-sip test suite. | 7.5 |
| 2003-12-31 | CVE-2003-1112 | Unspecified vulnerability in Ingate Firewall and Ingate Siparator The Session Initiation Protocol (SIP) implementation in Ingate Firewall and Ingate SIParator before 3.1.3 allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted INVITE messages, as demonstrated by the OUSPG PROTOS c07-sip test suite. | 7.5 |
| 2003-12-31 | CVE-2003-1111 | Unspecified vulnerability in Dynamicsoft Appengine The Session Initiation Protocol (SIP) implementation in multiple dynamicsoft products including y and certain demo products for AppEngine allows remote attackers to cause a denial of service or execute arbitrary code via crafted INVITE messages, as demonstrated by the OUSPG PROTOS c07-sip test suite. | 7.5 |
| 2003-12-31 | CVE-2003-1110 | Unspecified vulnerability in Columbia University Sipc 1.74 The Session Initiation Protocol (SIP) implementation in Columbia SIP User Agent (sipc) 1.74 and other versions before sipc 2.0 build 2003-02-21 allows remote attackers to cause a denial of service or execute arbitrary code via crafted INVITE messages, as demonstrated by the OUSPG PROTOS c07-sip test suite. | 7.5 |
| 2003-12-31 | CVE-2003-1109 | Unspecified vulnerability in Cisco products The Session Initiation Protocol (SIP) implementation in multiple Cisco products including IP Phone models 7940 and 7960, IOS versions in the 12.2 train, and Secure PIX 5.2.9 to 6.2.2 allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted INVITE messages, as demonstrated by the OUSPG PROTOS c07-sip test suite. | 7.5 |
| 2003-12-31 | CVE-2003-1108 | Unspecified vulnerability in Alcatel-Lucent Omnipcx 5.0 The Session Initiation Protocol (SIP) implementation in Alcatel OmniPCX Enterprise 5.0 Lx allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted INVITE messages, as demonstrated by the OUSPG PROTOS c07-sip test suite. | 5.0 |
| 2003-12-31 | CVE-2003-1106 | Denial of Service vulnerability in Microsoft SMTP Service Invalid FILETIME The SMTP service in Microsoft Windows 2000 before SP4 allows remote attackers to cause a denial of service (crash or hang) via an e-mail message with a malformed time stamp in the FILETIME attribute. | 5.0 |
| 2003-12-31 | CVE-2003-1105 | Unspecified vulnerability in Microsoft IE and Internet Explorer Unknown vulnerability in Internet Explorer 5.01 SP3 through 6.0 SP1 allows remote attackers to cause a denial of service (browser or Outlook Express crash) via HTML with certain input tags that are not properly rendered. | 2.6 |