Vulnerability Description
Buffer overflow in SJ Labs SJphone 1.60.303c, running under Windows Mobile 2003 on the Samsung SCH-i730 phone, allows remote attackers to cause a denial of service (device hang and call termination) via a malformed SIP INVITE message, a different vulnerability than CVE-2007-3351.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Windows Mobile | 2003 |
| Sj Labs | Sjphone | 1.60.303c |
| Securecomputing | Sch I730 Phone | All versions |
References
- http://osvdb.org/45404
- http://www.sipera.com/index.php?action=resources%2Cthreat_advisory&tid=216&
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35076
- http://osvdb.org/45404
- http://www.sipera.com/index.php?action=resources%2Cthreat_advisory&tid=216&
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35076
FAQ
What is CVE-2007-3445?
CVE-2007-3445 is a vulnerability with a CVSS score of 4.3 (MEDIUM). Buffer overflow in SJ Labs SJphone 1.60.303c, running under Windows Mobile 2003 on the Samsung SCH-i730 phone, allows remote attackers to cause a denial of service (device hang and call termination) v...
How severe is CVE-2007-3445?
CVE-2007-3445 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-3445?
Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Windows Mobile, Sj Labs Sjphone, Securecomputing Sch I730 Phone.