Vulnerabilities > CVE-2007-1823 - Remote Security vulnerability in Voice Mail Systems

CVSS 10.0 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

network

low complexity

t-mobile

critical

NVD

Published: 2007-04-02

Updated: 2008-11-13

Summary

T-Mobile voice mail systems allow remote attackers to retrieve or remove messages, or reconfigure mailboxes, by spoofing Calling Number Identification (CNID, aka Caller ID).

Vulnerable Configurations

Part	Description	Count
Application	T-Mobile T Mobile Voice Mail Systems *	1

References

http://osvdb.org/34986
http://www.kb.cert.org/vuls/id/726548