CVE-2007-3320

{"id": "CVE-2007-3320", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2007-06-21T18:30:00.000", "references": [{"url": "http://osvdb.org/38116", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/25747", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://support.avaya.com/elmodocs2/security/ASA-2007-263.htm", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/24544", "source": "cve@mitre.org"}, {"url": "http://www.sipera.com/index.php?action=resources%2Cthreat_advisory&tid=300&", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/34971", "source": "cve@mitre.org"}, {"url": "http://osvdb.org/38116", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/25747", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://support.avaya.com/elmodocs2/security/ASA-2007-263.htm", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/24544", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.sipera.com/index.php?action=resources%2Cthreat_advisory&tid=300&", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/34971", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "The Avaya 4602SW IP Phone (Model 4602D02A) with 2.2.2 and earlier SIP firmware accepts SIP INVITE requests from arbitrary source IP addresses, which allows remote attackers to have an unspecified impact."}, {"lang": "es", "value": "El Avaya 4602SW IP Phone (Model 4602D02A) con software empotrado (firmware) SIP 2.2.2 y versiones anteriores acepta peticiones SIP INVITE desde direcciones IP origen arbitrarias, lo que permite a atacantes remotos tener un impacto desconocido."}], "lastModified": "2024-11-21T00:32:56.763", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:avaya:4602sw_ip_phone:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D14C016C-E4E3-4FBA-B0BC-C06CE3E4154F", "versionEndIncluding": "r2.2"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}