Security Advisory

CVE-2007-3347

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2007-06-22 18:00:00

Last updated 2024-08-07 14:14:12

Assigner mitre

State PUBLISHED

Description

The D-Link DPH-540/DPH-541 phone accepts SIP INVITE messages that are not from the Call Servers IP address, which allows remote attackers to engage in arbitrary SIP communication with the phone, as demonstrated by communication with forged caller ID.

← Browse all CVEs View on cve.org ↗