CVE-2007-3368

Published: Jun 22, 2007Modified: Apr 23, 2026

7.8

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Exploitability: 10.0 / Impact: 6.9

Source: NVD

Description

Buffer overflow in the HTTP server on the Polycom SoundPoint IP 601 SIP phone with BootROM 3.0.x+ allows remote attackers to cause a denial of service (device reboot) via a malformed CGI parameter.

Affected (1)

Products: Polycom: Soundpoint Ip 650

Polycom

1 product

Soundpoint Ip 650

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Polycom Soundpoint Ip 650	Version bootrom_3.0.0

References (8)

http://osvdb.org/37611

Source: cve@mitre.org

http://www.polycom.com/common/documents/support/downloads/voice/soundpoint_ip_soundstation_ip_sip_2.1.1_release_notes.pdf

Source: cve@mitre.org

http://www.securityfocus.com/bid/24547

Source: cve@mitre.org

http://www.sipera.com/index.php?action=resources%2Cthreat_advisory&tid=273&

Source: cve@mitre.org

http://osvdb.org/37611

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.polycom.com/common/documents/support/downloads/voice/soundpoint_ip_soundstation_ip_sip_2.1.1_release_notes.pdf

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/24547

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.sipera.com/index.php?action=resources%2Cthreat_advisory&tid=273&

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.