Denial of Service Vulnerability in Avaya IP Phone 4602 with SIP Firmware
CVE-2007-3321

Currently unrated

Key Information:

Vendor
Avaya
Status
4602sw Ip Phone
Vendor
CVE Published:
21 June 2007

Summary

A vulnerability exists in the Avaya 4602 SW IP Phone (Model 4602D02A) with SIP firmware versions 2.2.2 and earlier. This flaw allows remote attackers to manipulate the BOOTP port (68/udp) by flooding it with packets, leading to a denial of service condition characterized by device reboots. As a result, legitimate users may experience disrupted service, making this a significant security concern for businesses relying on these devices for communication.

References

http://www.sipera.com/index.php?action=resources%2Cthreat...
x_refsource_MISC
https://exchange.xforce.ibmcloud.com/vulnerabilities/34970
vdb-entryx_refsource_XF
http://support.avaya.com/elmodocs2/security/ASA-2007-263.htm
x_refsource_CONFIRM

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2007-3321 : Denial of Service Vulnerability in Avaya IP Phone 4602 with SIP Firmware | SecurityVulnerability.io