Vulnerability Description
Senao SI-680H Wireless VoIP Phone Firmware 0.03.0839 leaves the VxWorks debugger UDP port 17185 available without authentication, which allows attackers to access the phone OS, obtain sensitive information, and cause a denial of service.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Senao | Si-680H Wireless Voip Phone | 1.7.0_firmware_0.03.0839 |
References
- http://lists.grok.org.uk/pipermail/full-disclosure/2005-November/038836.htmlVendor Advisory
- http://secunia.com/advisories/17606Vendor Advisory
- http://www.securityfocus.com/bid/15475
- http://www.vupen.com/english/advisories/2005/2474
- http://lists.grok.org.uk/pipermail/full-disclosure/2005-November/038836.htmlVendor Advisory
- http://secunia.com/advisories/17606Vendor Advisory
- http://www.securityfocus.com/bid/15475
- http://www.vupen.com/english/advisories/2005/2474
FAQ
What is CVE-2005-3715?
CVE-2005-3715 is a vulnerability with a CVSS score of 7.5 (HIGH). Senao SI-680H Wireless VoIP Phone Firmware 0.03.0839 leaves the VxWorks debugger UDP port 17185 available without authentication, which allows attackers to access the phone OS, obtain sensitive inform...
How severe is CVE-2005-3715?
CVE-2005-3715 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2005-3715?
Check the references section above for vendor advisories and patch information. Affected products include: Senao Si-680H Wireless Voip Phone.