Vulnerabilities > CVE-2003-1108 - Unspecified vulnerability in Alcatel-Lucent Omnipcx 5.0

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

alcatel-lucent

NVD

Published: 2003-12-31

Updated: 2017-10-11

Summary

The Session Initiation Protocol (SIP) implementation in Alcatel OmniPCX Enterprise 5.0 Lx allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted INVITE messages, as demonstrated by the OUSPG PROTOS c07-sip test suite.

Vulnerable Configurations

Part	Description	Count
Application	Alcatel-Lucent Alcatel Lucent Omnipcx 5.0	1

Oval

accepted

2008-09-08T04:00:49.911-04:00

class

vulnerability

contributors

name	Yuzheng Zhou
organization	Hewlett-Packard

description

family

ios

oval:org.mitre.oval:def:5831

status

accepted

submitted

2008-05-26T11:06:36.000-04:00

title

Multiple Vendor Session Initiation Protocol Denial of Service Vulnerability

version

Summary

Vulnerable Configurations

Oval

References