Denial of Service Vulnerability in D-Link VoIP Phones
CVE-2007-3348

Currently unrated

Key Information:

Vendor: D-link
Status: Dph-541; Dph-540
Vendor: CVE Published:; 22 June 2007

What is CVE-2007-3348?

The D-Link DPH-540 and DPH-541 VoIP phones are susceptible to a denial of service vulnerability, which can be exploited by remote attackers. An attacker can trigger this vulnerability by sending a malformed Session Description Protocol (SDP) header within a Session Initiation Protocol (SIP) INVITE message. Successful exploitation results in a device outage, effectively rendering the phones inoperable.

References

http://www.vupen.com/english/advisories/2007/2320

vdb-entryx_refsource_VUPEN

http://www.securityfocus.com/bid/24538

vdb-entryx_refsource_BID

https://exchange.xforce.ibmcloud.com/vulnerabilities/35062

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Jun 22, 2007
Vulnerability Reserved
Jun 22, 2007

D-link

What is CVE-2007-3348?

References

Timeline