Denial of Service Vulnerability in Avaya 4602 SW IP Phone
CVE-2007-3322

Currently unrated

Key Information:

Vendor: Avaya
Status: 4602sw Ip Phone
Vendor: CVE Published:; 21 June 2007

Summary

The Avaya 4602 SW IP Phone, specifically the 4602D02A model with SIP firmware versions 2.2.2 and earlier, exhibits a significant vulnerability where a constant media port number is utilized for calls. This flaw can be exploited by remote attackers who flood the RTP port with packets, resulting in noticeable audio quality degradation and service disruption for users. Mitigation measures should be implemented to safeguard the integrity of communications.

References

http://support.avaya.com/elmodocs2/security/ASA-2007-263.htm

x_refsource_CONFIRM

http://www.sipera.com/index.php?action=resources%2Cthreat...

x_refsource_MISC

http://secunia.com/advisories/25747

third-party-advisoryx_refsource_SECUNIA

Timeline

Vulnerability published
Jun 21, 2007
Vulnerability Reserved
Jun 21, 2007