This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Cisco First view 2005-07-11
Product 7940 Router Last view 2007-03-20
Version * Type Hardware
Update *  
Edition *  
Language *  
Sofware Edition *  
Target Software *  
Target Hardware *  
Other *  
 
CPE Product cpe:2.3:h:cisco:7940_router

Activity : Overall

Related : CVE

  Date Alert Description
5 2007-03-20 CVE-2007-1542

Unspecified vulnerability in the Cisco IP Phone 7940 and 7960 running firmware before POS8-6-0 allows remote attackers to cause a denial of service via the Remote-Party-ID sipURI field in a SIP INVITE request. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

5 2005-07-11 CVE-2005-2181

Cisco 7940/7960 Voice over IP (VoIP) phones do not properly check the Call-ID, branch, and tag values in a NOTIFY message to verify a subscription, which allows remote attackers to spoof messages such as the "Messages waiting" message.

Open Source Vulnerability Database (OSVDB)

id Description
34312 Cisco IP Phone 7940/7960 Malformed SIP INVITE Request DoS
17838 Multiple Vendor VoIP Phone SIP-Notify-Messages Spoofing

Snort® IPS/IDS

Date Description
2014-01-10 Cisco 7940/7960 INVITE Remote-Party-ID header denial of service attempt
RuleID : 20425 - Type : PROTOCOL-VOIP - Revision : 11
2014-01-10 Remote-Party-ID header hexadecimal characters in IP address field
RuleID : 20381 - Type : PROTOCOL-VOIP - Revision : 8
2014-01-10 Remote-Party-ID header hexadecimal characters in IP address field
RuleID : 13664 - Type : PROTOCOL-VOIP - Revision : 10
2014-01-10 Cisco 7940/7960 INVITE Remote-Party-ID header denial of service attempt
RuleID : 11970 - Type : PROTOCOL-VOIP - Revision : 13