The Cisco 7940 is susceptible to a denial of service vulnerability when sent a sequence of SIP INVITE transactions. Demonstration exploit included.
a26c3e610685427175a09dd9c6263f17dfcce7d29309566957189aa762b24539
The Nokia RM-159 version 12.0.013 suffers from a denial of service vulnerability when accepting a special sequence of SIP messages. Demonstration exploit included.
982d32bb063c52ac57973b7647ceca386a41fd00f3d6fafc909e609396e52d0c
SIP digest access authentication relay-attack for toll fraud.
ca104a5ef7c3ae9a777acdbf17be3e4db54266bec27c9beeaaf57be66696e2c5
A SQL injection vulnerability exist in asterisk-addons and cross site scripting vulnerabilities exist in the web applications of Areski, FreePBX, and Trixbox. Proof of concept exploit included.
ac8845577d7b8ecd690c7c048b6fcd61fa4a4faf29e65522cf671da1bc0d25c4
Proof of concept exploit for the SQL injection vulnerability in Asterisk.
8b8626ec6a5addd7cb7920e989ccfc1fd63961b0ddb8279ce50445a78a0b1c10
Cisco CallManager and OpenSer suffer from a SIP toll fraud and authentication forward vulnerability.
307fabedfcbf506fb99a6552995cc77ab972b432724e2f4f2db52c932554bc72
The Thomson ST2030 SIP phone is susceptible to a denial of service vulnerability. Exploit included.
fcc85d3d9b95f6bd30e103330b1aa858315aa973f24e7a77ced2548d94dbb610
The Grandstream SIP phone version GXV-3000 is susceptible to a denial of service vulnerability. Exploit included.
32216d7b8392c28bf46b588489ed61b7c1cd81e8d5af31403d8cc63041a20496
Proof of concept denial of service exploit for the Asterisk PBX that is susceptible to a remote denial of service vulnerability via a specially crafted INVITE message. Affected versions include 1.2.14, 1.2.15, 1.2.16, 1.4.1, and possibly earlier versions.
b028e135458f7be56bb5ab0eb5c49917c790fb16790858835b945e63e1a08061
The Grandstream Budge Tone-200 IP phone is susceptible to denial of service attacks. Exploit included.
f5dc93dad4bacbdee275a437be8193e1f363f792cc4ec290c051f0122df4f5cf
The Asterisk PBX is susceptible to a remote denial of service vulnerability via a specially crafted INVITE message. Affected versions include 1.2.14, 1.2.15, 1.2.16, 1.4.1, and possibly earlier versions.
dcea662ad08cea899e48c0048baa82b147423db4985672cd1bb981e6a9194636