Vulnerabilities > CVE-2007-2270 - Denial of Service vulnerability in Linksys SPA941 377 Character
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
COMPLETE Summary
The Linksys SPA941 VoIP Phone allows remote attackers to cause a denial of service (device reboot) via a 0377 (0xff) character in the From header, and possibly certain other locations, in a SIP INVITE request.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Hardware | 1 |
Exploit-Db
description Linksys SPA941 (remote reboot) Remote Denial of Service Exploit. CVE-2007-2270. Dos exploit for hardware platform file exploits/hardware/dos/3792.pl id EDB-ID:3792 last seen 2016-01-31 modified 2007-04-24 platform hardware port published 2007-04-24 reporter MADYNES source https://www.exploit-db.com/download/3792/ title Linksys SPA941 remote reboot Remote Denial of Service Exploit type dos description Linksys SPA941 377 character Remote Denial of Service Exploit. CVE-2007-2270. Dos exploit for hardware platform file exploits/hardware/dos/3791.pl id EDB-ID:3791 last seen 2016-01-31 modified 2007-04-24 platform hardware port published 2007-04-24 reporter MADYNES source https://www.exploit-db.com/download/3791/ title Linksys SPA941 \377 character Remote Denial of Service Exploit type dos
References
- http://lists.grok.org.uk/pipermail/full-disclosure/2007-April/053959.html
- http://secunia.com/advisories/25031
- http://www.securityfocus.com/bid/23619
- http://www.securitytracker.com/id?1017957
- http://www.vupen.com/english/advisories/2007/1532
- https://exchange.xforce.ibmcloud.com/vulnerabilities/33856
- https://www.exploit-db.com/exploits/3791
- https://www.exploit-db.com/exploits/3792