CyberSec.Space Logo
CVEブラウザに戻る

CVE-2007-3362

HIGH
7.8
CVSS Severity Score
EPSS Score0.1020%
EPSS Percentile15.35th
Published2007年6月22日
Last Modified2026年4月23日

Vulnerability Description

ageet AGEphone before 1.6.2, running on Windows Mobile 5 on the HTC HyTN Pocket PC device, allows remote attackers to (1) cause a denial of service (call disruption and device hang) via a SIP message with a malformed header and (2) cause a denial of service (call disruption, false ring indication, and device outage) via a SIP message with a malformed SDP delimiter.

Affected Platforms (CPE)

📦
Ageet

Agephone

<= 1.61

References & Advisories

🔗 http://osvdb.org/37729
🔗 http://secunia.com/advisories/25781
🔗 http://www.ageet.com/us/agephone/help/index.htm#vers
🔗 http://www.securityfocus.com/bid/24540
🔗 http://www.securityfocus.com/bid/24543
🔗 http://www.sipera.com/index.php?action=resources%2Cthreat_advisory&tid=214&
🔗 http://www.sipera.com/index.php?action=resources%2Cthreat_advisory&tid=215&
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/35067

関連する脆弱性情報

CVE-2006-720710.0

Buffer overflow in ageet AGEphone before 1.4.0 might allow remote attackers to have an unknown impact via unspecified vectors.

CVE-2007-336310.0

Multiple unspecified vulnerabilities in ageet AGEphone before 1.6.3 allow remote attackers to have an unknown impact via malformed...

CVE-2006-40297.5

Stack-based buffer overflow in sipd.dll in AGEphone 1.24 and 1.38.1 allows remote attackers to execute arbitrary code via a crafte...

CVE-2007-350010.0

Xeweb XEForum allows remote attackers to gain privileges via a modified xeforum cookie.