NCH Software Office Intercom SIP Invite Remote Denial Of Service Vulnerability Network Vulnerability

Summary

NCH Software Office Intercom is prone to a remote denial-of-service vulnerability because it fails to properly handle specially crafted SIP INVITE requests. Exploiting this issue allows remote attackers to cause a denial-of- service due to a NULL-pointer dereference. Due to the nature of this issue, remote code execution may be possible this has not been confirmed. Office Intercom 5.20 is vulnerable other versions may also be affected.

References

http://www.nch.com.au/oi/
https://www.securityfocus.com/bid/45049

Updated on 2015-03-25

Severity

Classification

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

Django Forms Library Algorithmic Complexity Vulnerability
Dopewars Server 'REQUESTJET' Message Remote Denial of Service Vulnerability
Denial of Service vulnerability in AVG Anti-Virus (Linux)
Asterisk T.38 Negotiation Remote Denial Of Service Vulnerability
Comodo Internet Security Denial of Service Vulnerability July 13

NCH Software Office Intercom SIP Invite Remote Denial of Service Vulnerability

Take action and discover your vulnerabilities