Summary
This host is running ZoIPer and is prone to Denial of Service vulnerability.
Impact
Successful exploitation will allow attackers to cause the service to crash.
Impact Level: Application
Solution
Upgrade to ZoIPer version 2.24 (Windows) and 2.13 (Linux) or later, http://www.zoiper.com/zoiper.php
Insight
The flaw is due to an error while handling specially crafted SIP INVITE messages which contain an empty Call-Info header.
Affected
ZoIPer version prior to 2.24 (Windows) and 2.13 (Linux)
References
Severity
Classification
-
CVE CVE-2009-3704 -
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P
Related Vulnerabilities