Denial of Service Vulnerability in Avaya IP Softphone Version 6.0
CVE-2008-6141

Currently unrated

Key Information:

Vendor: Avaya
Status: Ip Soft Phone
Vendor: CVE Published:; 14 February 2009

What is CVE-2008-6141?

The vulnerability within Avaya IP Softphone versions 6.0 SP4 and 6.01.85 allows remote attackers to exploit a weakness in the handling of H.323 data. By sending a substantial amount of H.323 traffic, an attacker can trigger a denial of service condition, resulting in the application crashing and disrupting service. This issue emphasizes the importance of monitoring and regulating incoming data streams to prevent potential disruptions and maintain communication integrity.

References

http://www.voipshield.com/research-details.php?id=125

x_refsource_MISC

https://exchange.xforce.ibmcloud.com/vulnerabilities/45745

vdb-entryx_refsource_XF

http://www.securityfocus.com/bid/31635

vdb-entryx_refsource_BID

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 14, 2009
Vulnerability Reserved
Feb 13, 2009