Searching voip software vulnerabilities

Cisco IP Phone (VoIP) models 7910, 7940, and 79

Phone | Cisco |

Cisco IP Phone (VoIP) models 7910, 7940, and 7960 use a default administrative password, which allows atackers with physical access to the phone to modify the configuration settings.


3com NBX IP VOIP NetSet Configuration Manager a

Configuration | attackers | service | Manager | remote | denial | allows | NetSet | cause | 3com | VOIP | NBX |

3com NBX IP VOIP NetSet Configuration Manager allows remote attackers to cause a denial of service (crash) via a Nessus scan in safeChecks mode.


UTStarcom iAN-02EX VoIP Analog Terminal Adaptor

UTStarcom | Terminal | iAN-02EX | Adaptor | Analog | VoIP |

UTStarcom iAN-02EX VoIP Analog Terminal Adaptor (ATA) allows local users to bypass ATA access restrictions by dialing "*#26845#" and causing a device reset.


Cisco 7940/7960 Voice over IP (VoIP) phones do

7940/7960 | Voice | Cisco | over |

Cisco 7940/7960 Voice over IP (VoIP) phones do not properly check the Call-ID, branch, and tag values in a NOTIFY message to verify a subscription, which allows remote attackers to spoof messages such as the "Messages waiting" message.


Senao SI-680H Wireless VoIP Phone Firmware 0.03

Wireless | Firmware | SI-680H | Phone | Senao | VoIP |

Senao SI-680H Wireless VoIP Phone Firmware 0.03.0839 leaves the VxWorks debugger UDP port 17185 available without authentication, which allows attackers to access the phone OS, obtain sensitive information, and cause a denial of service.


The SNMP daemon in UTStarcom F1000 VOIP WIFI Ph

UTStarcom | running | VxWorks | daemon | Phone | F1000 | VOIP | SNMP | WIFI | s20 |

The SNMP daemon in UTStarcom F1000 VOIP WIFI Phone s2.0 running VxWorks 5.5.1 with kernel WIND 2.6 has hard-coded public credentials that cannot be changed, which allows attackers to obtain sensitive information.


The telnet daemon in UTStarcom F1000 VOIP WIFI

UTStarcom | running | VxWorks | daemon | telnet | Phone | F1000 | VOIP | WIFI | s20 |

The telnet daemon in UTStarcom F1000 VOIP WIFI Phone s2.0 running VxWorks 5.5.1 with kernel WIND 2.6 has a default username "target" and password "password", which allows remote attackers to gain full access to the system.


Hitachi IP5000 VOIP WIFI Phone 1.5.6 has a hard

Hitachi | IP5000 | Phone | WIFI | VOIP |

Hitachi IP5000 VOIP WIFI Phone 1.5.6 has a hard-coded administrator password of "0000", which allows attackers with physical access to obtain sensitive information and modify the phone's configuration.


The default configuration of the HTTP server in

configuration | Hitachi | default | IP5000 | server | Phone | WIFI | HTTP | VOIP |

The default configuration of the HTTP server in Hitachi IP5000 VOIP WIFI Phone 1.5.6 does not require authentication for sensitive configuration pages, which allows remote attackers to modify configuration.


The SNMP v1/v2c daemon in Hitachi IP5000 VOIP W

Hitachi | IP5000 | daemon | v1/v2c | Phone | WIFI | SNMP | VOIP |

The SNMP v1/v2c daemon in Hitachi IP5000 VOIP WIFI Phone 1.5.6 allows remote attackers to gain read or write access to system configuration using arbitrary SNMP credentials.


Cisco IP Phone (VoIP) 7920 1.0(8) contains cert

Phone | Cisco |

Cisco IP Phone (VoIP) 7920 1.0(8) contains certain hard-coded ("fixed") public and private SNMP community strings that cannot be changed, which allows remote attackers to obtain sensitive information.


Cisco IP Phone (VoIP) 7920 1.0(8) listens to UD

Phone | Cisco |

Cisco IP Phone (VoIP) 7920 1.0(8) listens to UDP port 17185 to support a VxWorks debugger, which allows remote attackers to obtain sensitive information and cause a denial of service.


Memory leak in Avaya TN2602AP IP Media Resource

TN2602AP | Resource | Memory | Media | Avaya | leak |

Memory leak in Avaya TN2602AP IP Media Resource 320 circuit pack before vintage 9 firmware allows remote attackers to cause a denial of service (memory consumption) via crafted VoIP packets.


ZyXel P2000W VoIP 802.11b Wireless Phone runnin

information | attackers | sensitive | accessing | firmware | software | directly | Wireless | address | running | version | P2000W | obtain | remote | allows | WV0002 | 80211b | Phone | ZyXel | port | VoIP | such | MAC | UDP |

ZyXel P2000W VoIP 802.11b Wireless Phone running firmware WV.00.02 allows remote attackers to obtain sensitive information, such as MAC address and software version, by directly accessing UDP port 9090.


Clipcomm CPW-100E VoIP 802.11b Wireless Handset

Wireless | firmware | CPW-100E | Clipcomm | running | Handset | 80211b | Phone | VoIP |

Clipcomm CPW-100E VoIP 802.11b Wireless Handset Phone running firmware 1.1.12 (051129) and CP-100E VoIP 802.11b Wireless Phone running firmware 1.1.60 allows remote attackers to gain unauthorized access via the debug service on TCP port 60023.


Multiple unspecified vulnerabilities in Linksys

vulnerabilities | unspecified | Initiation | malformed | attackers | Multiple | Protocol | service | Linksys | Session | denial | router | remote | RT31P2 | allow | cause | VoIP | via |

Multiple unspecified vulnerabilities in Linksys RT31P2 VoIP router allow remote attackers to cause a denial of service via malformed Session Initiation Protocol (SIP) messages.


The FiWin SS28S WiFi VoIP SIP/Skype Phone, firm

administrative | hard-coded | SIP/Skype | attackers | 01_02_07 | username | password | firmware | version | remote | allows | telnet | access | Phone | FiWin | which | SS28S | gain | VoIP | WiFi | has | via |

The FiWin SS28S WiFi VoIP SIP/Skype Phone, firmware version 01_02_07, has a hard-coded username and password, which allows remote attackers to gain administrative access via telnet.


The HTTP server in Linksys SPA-921 VoIP Desktop

attackers | SPA-921 | Desktop | service | Linksys | allows | remote | server | denial | cause | Phone | HTTP | VoIP |

The HTTP server in Linksys SPA-921 VoIP Desktop Phone allows remote attackers to cause a denial of service (reboot) via (1) a long URL, or a long (2) username or (3) password during Basic Authentication.


AVM Fritz!Box 7050, and possibly other product

FritzBox | AVM |

AVM Fritz!Box 7050, and possibly other product models, allows remote attackers to cause a denial of service (VoIP application crash) via a zero-length UDP packet to the SIP port (port 5060).


The Vonage VoIP Telephone Adapter has a default

administrative | administrator | attackers | Telephone | password | username | Adapter | default | remote | access | obtain | allows | Vonage | "user" | which | VoIP | has |

The Vonage VoIP Telephone Adapter has a default administrator username "user" and password "user," which allows remote attackers to obtain administrative access.


Software vulnerabilities results 1 to 20 of 37     
Page: 12