Vulnerability Description
ageet AGEphone before 1.6.2, running on Windows Mobile 5 on the HTC HyTN Pocket PC device, allows remote attackers to (1) cause a denial of service (call disruption and device hang) via a SIP message with a malformed header and (2) cause a denial of service (call disruption, false ring indication, and device outage) via a SIP message with a malformed SDP delimiter.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Windows Mobile | 5.0 |
| Htc | Hytn | All versions |
| Ageet | Agephone | <= 1.61 |
References
- http://osvdb.org/37729
- http://secunia.com/advisories/25781
- http://www.ageet.com/us/agephone/help/index.htm#vers
- http://www.securityfocus.com/bid/24540
- http://www.securityfocus.com/bid/24543
- http://www.sipera.com/index.php?action=resources%2Cthreat_advisory&tid=214&
- http://www.sipera.com/index.php?action=resources%2Cthreat_advisory&tid=215&
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35067
- http://osvdb.org/37729
- http://secunia.com/advisories/25781
- http://www.ageet.com/us/agephone/help/index.htm#vers
- http://www.securityfocus.com/bid/24540
- http://www.securityfocus.com/bid/24543
- http://www.sipera.com/index.php?action=resources%2Cthreat_advisory&tid=214&
- http://www.sipera.com/index.php?action=resources%2Cthreat_advisory&tid=215&
FAQ
What is CVE-2007-3362?
CVE-2007-3362 is a vulnerability with a CVSS score of 7.8 (HIGH). ageet AGEphone before 1.6.2, running on Windows Mobile 5 on the HTC HyTN Pocket PC device, allows remote attackers to (1) cause a denial of service (call disruption and device hang) via a SIP message ...
How severe is CVE-2007-3362?
CVE-2007-3362 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-3362?
Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Windows Mobile, Htc Hytn, Ageet Agephone.