CVE-2007-3347

Published: Jun 22, 2007Modified: Apr 23, 2026

7.8

Vector

AV:N/AC:L/Au:N/C:N/I:C/A:N

Exploitability: 10.0 / Impact: 6.9

Source: NVD

Description

The D-Link DPH-540/DPH-541 phone accepts SIP INVITE messages that are not from the Call Server's IP address, which allows remote attackers to engage in arbitrary SIP communication with the phone, as demonstrated by communication with forged caller ID.

Affected (4)

Products: D Link: Dph 540, Dph 541

2 products

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
D Link Dph 540	Version 1.00.03
D Link Dph 540	Version 1.00.14
D Link Dph 541	Version 1.00.03
D Link Dph 541	Version 1.00.14

References (10)

http://secunia.com/advisories/25803

Source: cve@mitre.org

http://www.securityfocus.com/bid/24560

Source: cve@mitre.org

http://www.sipera.com/index.php?action=resources%2Cthreat_advisory&tid=219&

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2007/2320

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/35063

Source: cve@mitre.org

http://secunia.com/advisories/25803

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/24560

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.sipera.com/index.php?action=resources%2Cthreat_advisory&tid=219&

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2007/2320

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/35063

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.