phone software vulnerabilities
vulnerabilities.aspcode.net
Searching phone software vulnerabilities
Pingtel xpressa SIP-based voice-over-IP phone 1
voice-over-IP
|
SIP-based
|
Pingtel
|
xpressa
|
phone
|
Pingtel xpressa SIP-based voice-over-IP phone 1.2.5 through 1.2.7.4 does not require administrative privileges to perform a firmware upgrade, which allows unauthorized users to upgrade the phone.
Cisco IP Phone (VoIP) models 7910, 7940, and 79
Phone
|
Cisco
|
Cisco IP Phone (VoIP) models 7910, 7940, and 7960 use a default administrative password, which allows atackers with physical access to the phone to modify the configuration settings.
Multiple SQL injection vulnerabilities in (1) a
vulnerabilities
|
injection
|
Multiple
|
SQL
|
Multiple SQL injection vulnerabilities in (1) addcustomer.asp, (2) addprod.asp, and (3) process.asp in a.shopKart 2.0.3 allow remote attackers to execute arbitrary SQL and obtain sensitive information via the zip, state, country, phone, and fax parameters.
Nokia Symbian 60 allows remote attackers to cau
attackers
|
Symbian
|
service
|
denial
|
allows
|
remote
|
Nokia
|
cause
|
Nokia Symbian 60 allows remote attackers to cause a denial of service (phone restart) via a Bluetooth nickname.
LG U8120 mobile phone allows remote attackers t
attackers
|
service
|
remote
|
denial
|
mobile
|
allows
|
U8120
|
phone
|
cause
|
LG U8120 mobile phone allows remote attackers to cause a denial of service (device crash) via a malformed MIDI file.
StumbleInside GoText 1.01 stores sensitive user
StumbleInside
|
GoText
|
StumbleInside GoText 1.01 stores sensitive username, mail address,and phone number information in plaintext in the GoText.bin file, which allows local users to obtain that information.
Senao SI-680H Wireless VoIP Phone Firmware 0.03
Wireless
|
Firmware
|
SI-680H
|
Phone
|
Senao
|
VoIP
|
Senao SI-680H Wireless VoIP Phone Firmware 0.03.0839 leaves the VxWorks debugger UDP port 17185 available without authentication, which allows attackers to access the phone OS, obtain sensitive information, and cause a denial of service.
The SNMP daemon in UTStarcom F1000 VOIP WIFI Ph
UTStarcom
|
running
|
VxWorks
|
daemon
|
Phone
|
F1000
|
VOIP
|
SNMP
|
WIFI
|
s20
|
The SNMP daemon in UTStarcom F1000 VOIP WIFI Phone s2.0 running VxWorks 5.5.1 with kernel WIND 2.6 has hard-coded public credentials that cannot be changed, which allows attackers to obtain sensitive information.
The telnet daemon in UTStarcom F1000 VOIP WIFI
UTStarcom
|
running
|
VxWorks
|
daemon
|
telnet
|
Phone
|
F1000
|
VOIP
|
WIFI
|
s20
|
The telnet daemon in UTStarcom F1000 VOIP WIFI Phone s2.0 running VxWorks 5.5.1 with kernel WIND 2.6 has a default username "target" and password "password", which allows remote attackers to gain full access to the system.
Hitachi IP5000 VOIP WIFI Phone 1.5.6 has a hard
Hitachi
|
IP5000
|
Phone
|
WIFI
|
VOIP
|
Hitachi IP5000 VOIP WIFI Phone 1.5.6 has a hard-coded administrator password of "0000", which allows attackers with physical access to obtain sensitive information and modify the phone's configuration.
The default index page in the HTTP server in Hi
Hitachi
|
default
|
server
|
IP5000
|
index
|
Phone
|
WIFI
|
HTTP
|
page
|
VOIP
|
The default index page in the HTTP server in Hitachi IP5000 VOIP WIFI Phone 1.5.6 lists sensitive information such as software versions.
The default configuration of the HTTP server in
configuration
|
Hitachi
|
default
|
IP5000
|
server
|
Phone
|
WIFI
|
HTTP
|
VOIP
|
The default configuration of the HTTP server in Hitachi IP5000 VOIP WIFI Phone 1.5.6 does not require authentication for sensitive configuration pages, which allows remote attackers to modify configuration.
The SNMP v1/v2c daemon in Hitachi IP5000 VOIP W
Hitachi
|
IP5000
|
daemon
|
v1/v2c
|
Phone
|
WIFI
|
SNMP
|
VOIP
|
The SNMP v1/v2c daemon in Hitachi IP5000 VOIP WIFI Phone 1.5.6 allows remote attackers to gain read or write access to system configuration using arbitrary SNMP credentials.
Cisco IP Phone (VoIP) 7920 1.0(8) contains cert
Phone
|
Cisco
|
Cisco IP Phone (VoIP) 7920 1.0(8) contains certain hard-coded ("fixed") public and private SNMP community strings that cannot be changed, which allows remote attackers to obtain sensitive information.
Clipcomm CPW-100E VoIP 802.11b Wireless Handset
Wireless
|
firmware
|
CPW-100E
|
Clipcomm
|
running
|
Handset
|
80211b
|
Phone
|
VoIP
|
Clipcomm CPW-100E VoIP 802.11b Wireless Handset Phone running firmware 1.1.12 (051129) and CP-100E VoIP 802.11b Wireless Phone running firmware 1.1.60 allows remote attackers to gain unauthorized access via the debug service on TCP port 60023.
The D-Link DPH-540/DPH-541 phone accepts SIP IN
DPH-540/DPH-541
|
communication
|
demonstrated
|
attackers
|
arbitrary
|
messages
|
Server's
|
address
|
accepts
|
forged
|
remote
|
D-Link
|
engage
|
INVITE
|
caller
|
allows
|
phone
|
which
|
Call
|
not
|
SIP
|
The D-Link DPH-540/DPH-541 phone accepts SIP INVITE messages that are not from the Call Server's IP address, which allows remote attackers to engage in arbitrary SIP communication with the phone, as demonstrated by communication with forged caller ID.
The D-Link DPH-540/DPH-541 phone allows remote
DPH-540/DPH-541
|
attackers
|
service
|
denial
|
remote
|
D-Link
|
allows
|
phone
|
cause
|
The D-Link DPH-540/DPH-541 phone allows remote attackers to cause a denial of service (device outage) via a malformed SDP header in a SIP INVITE message.
The SJPhone SIP soft phone 1.60.303c, when inst
installed
|
SJPhone
|
running
|
Windows
|
160303c
|
Mobile
|
phone
|
soft
|
Dell
|
Axim
|
SIP
|
The SJPhone SIP soft phone 1.60.303c, when installed on the Dell Axim X3 running Windows Mobile 2003, allows remote attackers to cause a denial of service (device hang and traffic amplification) via a direct crafted INVITE transaction, which causes the phone to transmit many RTP packets.
The Snom 320 SIP Phone, running snom320 linux 3
Snom
|
The Snom 320 SIP Phone, running snom320 linux 3.25, snom320-SIP 6.2.3, and snom320 jffs23.36, allows remote attackers to place calls to arbitrary phone numbers via certain requests to the web server on port 1800.
The Grandstream SIP Phone GXV-3000 with firmwar
Grandstream
|
GXV-3000
|
firmware
|
Phone
|
SIP
|
The Grandstream SIP Phone GXV-3000 with firmware 1.0.1.7, Loader 1.0.0.6, and Boot 1.0.0.18 allows remote attackers to force silent call completion, eavesdrop on the phone's local environment, and cause a denial of service (blocked call reception) via a certain SIP INVITE message followed by a certain "SIP/2.0 183 Session Progress" message.
Software vulnerabilities results 1 to 20 of 78
Page:
1
2
3
4
►