Vulnerability Description
The Avaya 4602SW IP Phone (Model 4602D02A) with 2.2.2 and earlier SIP firmware accepts SIP INVITE requests from arbitrary source IP addresses, which allows remote attackers to have an unspecified impact.
CVSS Score
5.0
MEDIUM
AV:N/AC:L/Au:N/C:N/I:P/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Avaya | 4602Sw Ip Phone | <= r2.2 |
References
- http://osvdb.org/38116
- http://secunia.com/advisories/25747Vendor Advisory
- http://support.avaya.com/elmodocs2/security/ASA-2007-263.htmVendor Advisory
- http://www.securityfocus.com/bid/24544
- http://www.sipera.com/index.php?action=resources%2Cthreat_advisory&tid=300&
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34971
- http://osvdb.org/38116
- http://secunia.com/advisories/25747Vendor Advisory
- http://support.avaya.com/elmodocs2/security/ASA-2007-263.htmVendor Advisory
- http://www.securityfocus.com/bid/24544
- http://www.sipera.com/index.php?action=resources%2Cthreat_advisory&tid=300&
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34971
FAQ
What is CVE-2007-3320?
CVE-2007-3320 is a vulnerability with a CVSS score of 5.0 (MEDIUM). The Avaya 4602SW IP Phone (Model 4602D02A) with 2.2.2 and earlier SIP firmware accepts SIP INVITE requests from arbitrary source IP addresses, which allows remote attackers to have an unspecified impa...
How severe is CVE-2007-3320?
CVE-2007-3320 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-3320?
Check the references section above for vendor advisories and patch information. Affected products include: Avaya 4602Sw Ip Phone.