Vulnerabilities > CVE-2003-1111 - Unspecified vulnerability in Dynamicsoft Appengine
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
The Session Initiation Protocol (SIP) implementation in multiple dynamicsoft products including y and certain demo products for AppEngine allows remote attackers to cause a denial of service or execute arbitrary code via crafted INVITE messages, as demonstrated by the OUSPG PROTOS c07-sip test suite.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
References
- http://www.cert.org/advisories/CA-2003-06.html
- http://www.dynamicsoft.com/support/advisory/ca-2003-06.php
- http://www.ee.oulu.fi/research/ouspg/protos/testing/c07/sip/
- http://www.kb.cert.org/vuls/id/528719
- http://www.securityfocus.com/bid/6904
- https://exchange.xforce.ibmcloud.com/vulnerabilities/11379