Vulnerability Description
Polycom SoundPoint IP 301 VoIP Desktop Phone, firmware version 1.4.1.0040, allows remote attackers to cause a denial of service (reboot) via (1) a long URL sent to the HTTP daemon and (2) unspecified manipulations as demonstrated by the Nessus http_fingerprinting_hmap.nasl script.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Polycom | Soundpoint Ip 301 | 1.4.1.0040 |
References
- http://archives.neohapsis.com/archives/fulldisclosure/2006-10/0090.html
- http://secunia.com/advisories/22266Vendor Advisory
- http://www.securityfocus.com/bid/20351
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29350
- http://archives.neohapsis.com/archives/fulldisclosure/2006-10/0090.html
- http://secunia.com/advisories/22266Vendor Advisory
- http://www.securityfocus.com/bid/20351
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29350
FAQ
What is CVE-2006-5233?
CVE-2006-5233 is a vulnerability with a CVSS score of 7.8 (HIGH). Polycom SoundPoint IP 301 VoIP Desktop Phone, firmware version 1.4.1.0040, allows remote attackers to cause a denial of service (reboot) via (1) a long URL sent to the HTTP daemon and (2) unspecified ...
How severe is CVE-2006-5233?
CVE-2006-5233 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-5233?
Check the references section above for vendor advisories and patch information. Affected products include: Polycom Soundpoint Ip 301.